| Author |
 Topic  |
|
ruirib
Snitz Forums Admin
Portugal
26364 Posts |
|
|
bobsmith
Starting Member
25 Posts |
 Posted - 16 May 2006 : 13:50:19
|
quote:
Originally posted by ruirib
Have you unchecked Windows Authentication in IIS manager?
Windows Auth still checked in IIS 6 |
 |
|
|
ruirib
Snitz Forums Admin
Portugal
26364 Posts |
|
|
bobsmith
Starting Member
25 Posts |
Posted - 16 May 2006 : 13:55:44
|
| OK, now I get 401.2 access denied. |
|
|
|
ruirib
Snitz Forums Admin
Portugal
26364 Posts |
Posted - 16 May 2006 : 14:12:40
|
| Again, I have no big experience with Windows 2003. On my test system, the IUSR_ account has no permissions set for the site folder, but there is an IIS_WPG that needs R / RE / L rights for the folder. |
Snitz 3.4 Readme | Like the support? Support Snitz too |
|
|
|
bobsmith
Starting Member
25 Posts |
Posted - 16 May 2006 : 14:17:42
|
UNCLE!
OK, I removed IUSR and addedd IIS_WPG with the rights specificed above. Still getting 401.2 access denied. I'm sure its a permissions issue, but I can't put my finger on it.
If I turn on anon, I get a usrname/pswrd prompt, but I know I'm not supposed to get that. I'm just not sure where the problem is. |
|
|
|
HuwR
Forum Admin
United Kingdom
20595 Posts |
Posted - 16 May 2006 : 14:20:58
|
| if you get a password prompt when anon access is enabled it almost certainly means that the permissions are wrong on the folder, try giving the everyone group (if there is one) read permissions to the forum directory |
|
|
|
bobsmith
Starting Member
25 Posts |
Posted - 16 May 2006 : 14:28:19
|
Let me clarify:
Anon is OFF and I get password prompt.
Anon is ON, I get access denied.
I currently have anon OFF and I get a pswrd prompt. When I enter admin (server admin) credentials, I can access the site, login, create users, etc.
So, obviously, what I want is for everyone to have access to read default.asp but nothing beyond that unless they are registered user.
So...what to do, what to do... |
|
|
|
HuwR
Forum Admin
United Kingdom
20595 Posts |
Posted - 16 May 2006 : 14:41:23
|
| anon has to be ON, you then need to fix the permissions on the directory so that you can get in, to do this try adding the Everyone acount to the directory, if that doesn't work I would delete everything and start again, but you must turn ON ANON access otherwise it just will not work ever unless you give everyone a login to the server |
|
|
|
bobsmith
Starting Member
25 Posts |
Posted - 16 May 2006 : 15:27:24
|
OK, anon is ON, iusr has RE/L/R permissions on the folder.
I get this:
The database could not be opened !!
Check your config.asp file and set the
strConnString so it points to the database.
Also check if strDBType is set to the right databasetype.
Code : 80040E4D
Error Description :
Login failed for user 'DOMAIN\IUSR_SERVERNAME'
PS: I have Trusted_Connection=yes in my connection string.
PSS: I turned off Friendly HTTP messages and I see this:
Microsoft OLE DB Provider for SQL Server error '80040e4d'
Login failed for user 'DOMAIN\IUSR_SERVERNAME'.
/inc_header.asp, line 111
|
Edited by - bobsmith on 16 May 2006 16:08:47 |
|
|
|
bobsmith
Starting Member
25 Posts |
Posted - 16 May 2006 : 16:18:21
|
Done. It works. I asked the wife (former IBM Global Services Team Lead) and she pointed out that my IUSR had not been granted login rights to my SQL 2005 database. Once added, it works great!
Thanks to you all for your replies. |
|
|
|
HuwR
Forum Admin
United Kingdom
20595 Posts |
Posted - 16 May 2006 : 17:31:16
|
| your IUSR account does not requir login to your sql database, that is a massive security risk, the only user that requires access to your SQL db should be the user you used in your config.asp, I am a fully qualified MS SQL Administrator, so you cantell your wife from me that what she has told you to do is avery dangerous thing |
|
|
|
HuwR
Forum Admin
United Kingdom
20595 Posts |
Posted - 16 May 2006 : 17:32:35
|
| you should not be using a trusted connection, that is why it thinks IUSR needs permissions, where in the config.asp do you see a string that uses trusted connections |
|
|
|
HuwR
Forum Admin
United Kingdom
20595 Posts |
Posted - 16 May 2006 : 18:26:31
|
bobsmith,
You really must remove the IUSR from your SQL database, it is like giving a convicted burglar the keys to your house |
Edited by - HuwR on 16 May 2006 19:23:49 |
|
|
|
ruirib
Snitz Forums Admin
Portugal
26364 Posts |
Posted - 16 May 2006 : 19:22:54
|
| Yes, I can only second Huwr's opinion, you have no need to use Windows Authentication to access SQL Server. You should setup a login with SQL Server authentication, add a user associated with that login to the database and specify that user in the connection string, in config.asp. |
Snitz 3.4 Readme | Like the support? Support Snitz too |
|
|
|
Topic |
|
Topic Locked
