Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Why does IIS Give clients 403 Forbidden Errors?

Posted on 2011-09-26
7
Medium Priority
?
1,026 Views
Last Modified: 2012-05-12
Points of My Scenario
1. I am admin of a IIS7 web server on Windows Server 2008 R2.
2. Clients connect to the server's website using HTTPS
3. When the website is configured to "Require SSL" and to accept client certificates, clients (browsers) get a HTTP 403 Forbidden error when connecting by HTTPS.
4. When the "Require SSL" setting is removed from the website, clients can successfully connect, although using HTTPS again.
QUESTION: If clients are using HTTPS in both cases, why do they fail when the website is configured to "Require SSL"?
0
Comment
Question by:waltforbes
  • 5
  • 2
7 Comments
 
LVL 21

Expert Comment

by:Hendrik Wiese
ID: 36599087
have you created the SSL Certificate in IIS7?
0
 
LVL 21

Expert Comment

by:Hendrik Wiese
ID: 36599101
You can click here for full instruction on how to setup SSL on IIS7.
0
 

Author Comment

by:waltforbes
ID: 36599179
To HendrikWiese: I have acquired a certificate from our CA (certificate authority) and binded it to the website successfully: note that clients can access the website by HTTPS successfully. The problem arises only when the website is configured to require SSL. I have verified the instructions you sent in the link (http://learn.iis.net/page.aspx/144/how-to-set-up-ssl-on-iis-7/).
0
Prepare for your VMware VCP6-DCV exam.

Josh Coen and Jason Langer have prepared the latest edition of VCP study guide. Both authors have been working in the IT field for more than a decade, and both hold VMware certifications. This 163-page guide covers all 10 of the exam blueprint sections.

 
LVL 21

Expert Comment

by:Hendrik Wiese
ID: 36599217
Please have a look at the following and let me know if it helps?

http://www.experts-exchange.com/Networking/Protocols/Application_Protocols/SSL/Q_26561310.html
0
 
LVL 21

Expert Comment

by:Hendrik Wiese
ID: 36599302
Have you tried the following:

To resolve this problem, follow these steps:1.In Windows Explorer, locate the folder of the virtual directory, or locate the folder of the Web site.
2.Right-click the folder, and then click Properties.
3.Click the Security tab, and then click Edit.
4.In the Group or user names box, click the account to which you want to grant the Write permission, and then click to select the Write check box.
5.Click OK.

Reference: http://support.microsoft.com/kb/942035
0
 
LVL 21

Accepted Solution

by:
Hendrik Wiese earned 2000 total points
ID: 36599317
This is obviously a permission issue.

You can view all the forbidden codes here and select the KB within the code description to see the resolution.
0
 

Author Closing Comment

by:waltforbes
ID: 36599391
HendrikWiese: the codes are what I needed most. Many thanks!
0

Featured Post

New feature and membership benefit!

New feature! Upgrade and increase expert visibility of your issues with Priority Questions.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you are a web developer, you would be aware of the <iframe> tag in HTML. The <iframe> stands for inline frame and is used to embed another document within the current HTML document. The embedded document could be even another website.
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…

886 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question