Dan
asked on
IIS7
I am running windows server 2008 R2 with IIS7. I used to run win2003 with IIs6 and we have a folder that has shared pictures available for all the different websites. So we can use the pictures in the "resources" folder on my root C that all the websites had access to, probably read only.
Now with IIS7, when we try to access content in that same folder, pictures or what ever, it prompts for a username and password.
Does anyone know how to get around this, how to allow internet access (read only) to that folder if someone clicks on a website and the pictures are stored on that folder?
Am I making sense?
Now with IIS7, when we try to access content in that same folder, pictures or what ever, it prompts for a username and password.
Does anyone know how to get around this, how to allow internet access (read only) to that folder if someone clicks on a website and the pictures are stored on that folder?
Am I making sense?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Do I somehow need to enable "anonymous authentication is enabled". I've been reading different sites and am trying to figure this out.
no, there are no actual users, it's all users coming through web sites. but does this entry has read rights for the folder?
ASKER
I came accross this, but it won't let me add the nt authority\authenticated users to the administrators group??? why not...
The IUSR account is "NT AUTHORITY\IUSR", the SID is S-1-5-17. I tryed to put it in "Administrators" group but it didn't work.
The Solution!!!!
Under "Administrators" group I had to put the "NT AUTHORITY\Authenticated Users" with SID S-1-5-11.
The IUSR account is "NT AUTHORITY\IUSR", the SID is S-1-5-17. I tryed to put it in "Administrators" group but it didn't work.
The Solution!!!!
Under "Administrators" group I had to put the "NT AUTHORITY\Authenticated Users" with SID S-1-5-11.
ASKER
yes, I added the IIS_IUSRS group with read rights for security. The folder is NOT shared.
ASKER
so under hte IIS_IUSRS group, I added the folowing user: NT Authority\IUSR(S-1-5-17)
Is that ok?
Is that ok?
you need to share it as well (again with read permissions to iis users)
ASKER
But is it ok to add hte nt authority\IUSR user to that group, the IIS_IUSRS group?
Or is that giving to much access to that folder?
Or is that giving to much access to that folder?
ASKER
Still failing, I shared the folder and gave hte iis_IUSRS group read only access, but still failing.
I get the following error:
401 - Unauthorized: Access is denied due to invalid credentials.
You do not have permission to view this directory or page using the credentials that you supplied.
I get the following error:
401 - Unauthorized: Access is denied due to invalid credentials.
You do not have permission to view this directory or page using the credentials that you supplied.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
we have a major problem, now when anyone goes to our website, there's a logon prompt to just view our website, how do I fix this? I removed everything I did.
ASKER
well, I had a coworker look at it and it's fixed, somehow the permissions for system was removed.
ASKER
Thanks guys, actually, the problem was, there were 3 files in there that were encrypted, so we had to change the file permissions on those three files, to unencrypted and it's working fine now.
good on ya mate
ASKER
creator owner
system
administrators
users
IIS_IUSRS
When I brought up that group (IIS_IUSRS), it's empty, there's no users in it, that's why it probably doesn't work. So what user do I need to put in there? I can't add Network Service, as that has a lot of access.