RE: User Security?

Tech-Archive recommends: Fix windows errors by optimizing your registry

{\rtf1\ansi\ansicpg936\deff0\deflang1033\deflangfe2052{\fonttbl{\f0\fnil\fprq2\fcharset0 MS Sans Serif;}}
\viewkind4\uc1\pard\lang2052\f0\fs20 Thanks for your quick response Asaf,
\par
\par Now I get that you're using the IE browser to visit the asmx page and the server gave you 401.3 error when the custom user try visiting the page. Based on my experience, this is a typical NTFS permission as the below message indicates:
\par
\par =========================
\par Error message 401.3: You do not have permission to view this directory or
\par page using the credentials you supplied (access denied due to Access Control
\par Lists). Ask the Web server's administrator to give you access.
\par =========================
\par
\par When you use "integrated windows authentication" and deny anonymous access in IIS, the client will be forced to provide a valid user identity(recognizable at server). And this identity will be forwarded from IIS to ASP.NET runtime, if the ASP.NET application is using "Windows" authentication(in web.config), it will use is security identity (from IIS) as the HttpContext.Current.User.Identity, also ASP.NET by default will perform NTFS file permision checking against this security identity for the file (aspx or asmx ) the client is requesting...
\par
\par Therefore, the problem here is whether that custom account has sufficient permission(NTFS) to access that asmx file(read permission is enough). Based on my local test, if your web application is created under the IIS default site (under c:\\inetpub\\wwwroot), the machine\\users group should have the read permission to it automatically. Is your webservice application's folder put in an external directory/drive on the server machine? Anyway, you can check your webservice application's directory's NTFS security setting (grant the custom account sufficient permision to your webservice's application dir or that certain asmx file).
\par
\par Hope this helps. If there is anything unclear or if you still meet any problem, please feel free to let me know.
\par
\par Sincerely,
\par
\par Steven Cheng
\par
\par Microsoft MSDN Online Support Lead
\par
\par
\par This posting is provided "AS IS" with no warranties, and confers no rights.
\par
\par
\par }

Relevant Pages

  • Re: Has anyone ever had this problem?
    ... Uncheck the Enable 3rd party browser extensions ... If you use a HOSTS file, ... error message box comes up immediately upon double-clicking the icon on my ... "An Error has occurred in Internet Explorer. ...
    (microsoft.public.windows.inetexplorer.ie6.browser)
  • Re: RWW: version=1 msgtype=status status=-3 message=Password Inco
    ... As per your request I have attached a screen capture of the error message. ... it is not a browser specific issue. ... Remove registry keys. ...
    (microsoft.public.windows.server.sbs)
  • Re: W3C Validator Errors
    ... Attribute "language" exists, but can not be used ... It's a poorly formulated error message. ... looking in my browser, not the text you are seeing. ... The site is a cms driven site and the syntax is not easy to change. ...
    (alt.html)
  • Re: cant link to pdf pages on external sites
    ... I don't know if it's a Mac versus PC issue, but, the following link: ... Here, however, all .pdf URLs that work in my browser also work fine when links are placed in a document in Word 2007. ... I.e., at what point does it fail, and what error message does it provide? ... But, when trying to click the *same* hyperlink in Word 2007, the error ...
    (microsoft.public.word.application.errors)
  • Re: Silversurfers E-MAIL list IMPORTANT
    ... refused to accept it (the error message is reproduced below). ... Pam is having a problem sending a mail to Froggie using OE in Win. ... bring a blank page onto my browser. ...
    (uk.people.silversurfers)