MX2004 CH11 Pg405 Login Fails Presents Win Login

TroyG · August 30th, 2007, 12:45 AM

I have configured TheSoccerSite on MS Windows Server 2003 R2 Standard Edition SP2. On attempt to login to the remote web site I am presented with a Windows login screen not the login.asp screen. Is there an issue with MS Win2003?

I have configured TheSoccerSite on my localhost MS WinXP Pro SP2 and using http://localhost/TheSoccerSite/login.asp - it works great.

The IIS 6 Authentication Methods screen in 2003 doesn't look exactly like the book but the same radio buttons are available.

NTFS - I have prevented inheritance on Database folder, copied the permissions, removed the Users group (no Everyone), added IUSR_MachineName with Modify Permission. In IIS uncheck Anonymous, check Integrated Windows authentication.

Database connTheSoccerSite looks good see the tables on web server and the ServerBehavior page looks right.

If I resort to entering Admin account credentials to the MS login screen the login.asp page is presented. If I resort to Anonymous Authentication all works well but of course that's no good.

Any ideas why this might be happening?

Imar · August 30th, 2007, 02:07 AM

Hi there,

Did you configure Read permissions for the IUSR_MachineName account on the root of the site? The database folder is only part of the configuration process.

Also, what do you mean with:

"If I resort to Anonymous Authentication all works well but of course that's no good."

Isn't that what you're trying to accomplish? E.g. anonymous users can access the site?

Imar

---------------------------------------
Imar Spaanjaars
http://Imar.Spaanjaars.Com
Everyone is unique, except for me.
Author of ASP.NET 2.0 Instant Results and Beginning Dreamweaver MX / MX 2004

TroyG · August 30th, 2007, 01:21 PM

First THANKS for the book, and second for the very quick reply!

I think I confused database folder permission with the root website permission.

Please confirm: TheSoccerSite web site root remains Anonymous Access
while the Database folder is restricted to Integrated Authentication.

I came to this conclusion by your response, "Isn't that what you are trying to accomplish?.

I had set the both the root website and the database folder to Integrated Authentication. Setting the root website to Anonymous and the Database folder to Integrated allows proper operation. Does that sound right? It appears to be working :D

The web developer field is so vast that the only way I can grasp the scope is a RAD product like DW MX2004 with an outstanding book like yours. I never seem to get past Chapter 8 of all the other programming books, before I start rereading it all over again. Thanks, after I finish the book I'll be spending a lot more time on your website - a vast resource.

Imar · August 30th, 2007, 03:16 PM

Great; glad it's working.

And yes, the idea is indeed anonymous access for the IUSR account to the root of the site. That way, unauthenticated users can access the web site. The IUSR in turn will handle their requests and since it has read access, it can serve up the requested pages.

To stop users from downloading the database, you need to enable integrated security on the database folder. That way, users can't download it (as they aren't associated with a trusted / integrated account) but the IUSR account (used by IIS to serve the pages) is able to read from and write to it.

Have fun on my web site; there's plenty to read....

Cheers,

Imar

---------------------------------------
Imar Spaanjaars
http://Imar.Spaanjaars.Com
Everyone is unique, except for me.
Author of ASP.NET 2.0 Instant Results and Beginning Dreamweaver MX / MX 2004