ziiva
asked on
403 - Forbidden: Access is denied. You do not have permission to view this directory or page using the credentials that you supplied.
#1 - 2008 R2 Server - IIS 7.5 ( not a domain controller )
#2 - DC is server 2003
Accessing a simple hmtl file locally on the 2008 server is OK - page renders
Accessing the same file elsewhere in the lan/domain results in the error...
403 - Forbidden: Access is denied.
You do not have permission to view this directory or page using the credentials that you supplied.
IIS_IUSRS ( 2008server\iis_iusrs ) have full perms to the directory where this html file is located.
This appears to be a network permission issue, but I can't seem to find the right combo in IIS / directory permissions.
#2 - DC is server 2003
Accessing a simple hmtl file locally on the 2008 server is OK - page renders
Accessing the same file elsewhere in the lan/domain results in the error...
403 - Forbidden: Access is denied.
You do not have permission to view this directory or page using the credentials that you supplied.
IIS_IUSRS ( 2008server\iis_iusrs ) have full perms to the directory where this html file is located.
This appears to be a network permission issue, but I can't seem to find the right combo in IIS / directory permissions.
ASKER
Ah, sorry, should have provided more details...
Windows firewall is off.
In IIS --> website #1 points to c:\inetpub\wwwroot
In IIS --> website #2 points to c:\inetpub\wwwroot\realcod e
Any file I attempt to open via website #1 generates the 403 error. So for the same file...
website#1\realcode\hello.h tml generates the access error
website#2\hello.html renders OK
The IIS permissions appear to be the same for both sites.
Windows firewall is off.
In IIS --> website #1 points to c:\inetpub\wwwroot
In IIS --> website #2 points to c:\inetpub\wwwroot\realcod
Any file I attempt to open via website #1 generates the 403 error. So for the same file...
website#1\realcode\hello.h
website#2\hello.html renders OK
The IIS permissions appear to be the same for both sites.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Create an account on domain (active directory), assign that user as application pool's user for this website. Also provide permission to that user on that share or NAS location.
ASKER
A solution...
windows\system32\inetsrv\c onfig\Appl icationHos t.config
for some reason had this entry for the website #1...
<security>
<ipSecurity allowUnlisted="false">
</ipSecurity>
</security>
I set this to "true" and users are able to access files OK
windows\system32\inetsrv\c
for some reason had this entry for the website #1...
<security>
<ipSecurity allowUnlisted="false">
</ipSecurity>
</security>
I set this to "true" and users are able to access files OK
ASKER
This solution might have worked - but found the config file issue.
Without adding the app pool user ( changing only the the config file ) - domain users have access to the site's pages/content.
Without adding the app pool user ( changing only the the config file ) - domain users have access to the site's pages/content.
To fix this: goto control panel, Windows firewall
goto the Exceptions tab and Scroll down to World Wide Web Services (HTTP).
Click the check box and click OK.
Now your machine is accessible to the outside world.
Click the check box and click OK.