I have been having trouble setting up the new servers websites and ftpsites I was wondering what information you guys would need to help me out... The old server is the same but the websites are working.
It is a IIS8 and all the websites SHOULD be correctly ported over and I have got one website working but the more complex websites are not coming up!
Hi I created an ASP.NET MVC application using the HTTPS protocol and a local certificate.
To test, I created a self-signed certificate in IIS, as described in some forums.
When I try to create a WebSite in IIS for my application, using this certificate, the site is created with error.
When I try to start it, I get the message: "The object identifier does not represent a valid object. HRESULT: 0x800710D8". I already researched several posts and I did not find a solution to the problem.
Has anyone had this problem?
Thanks for the help.
IIS 8.5
(I am not an expert in Website authoring)
IIS is hosting a private website (application pool).
Pages loading (without loading data from database) in browsers take arond 6 secs to be displayed (the same page opned then takes less time).
I have found out that by analyzing the HTTP traffic
Time spent from the request: 6 secs
Content encoded entity body (gzip): 15000 bytes -> 73000 bytes
File data: 73343 bytes.
I am not expert in web content, here my question:
Are 73 kb the content of file to be downloaded from the Web Server and loaded in the Page?
I have also checked the IIS log but I do not find any useful info.
Do you have any docs, link on how to better analyze IIS log?
Thanks four your help.
Hi,
I am trying to build an IIS Web Farm. I performed all tasks on this topic Build a Web Farm with IIS Server . I choose shared content and shared configuration infrastructure. Web Site's contents and IIS configuration files storing on a Back-End file server. Web farm working properly. I can reach the web sites on web farm. But when trying to reconfigure iis (addding/removing website or changing a web site settings) getting this error: "\\?\UNC\{Server}\IISConfig\applicationHost.config Error: Cannot write configuration file."
I used a domain user, it is accessing shared configuration . Also this user has required rights on shared folders and the user member of administrator group on back-end file server.
Most of the website is up... a sublink under the website(order-forms.asp) is giving me this error but everything else seems to be working
Earlier today I switched a site from HTTP to HTTPS and all seemed good. Then the DNS stopped resolving suddenly. This is weird because I was not doing anything at the time. It just stopped. I checked everything in ISS and Server Manager and the DNS server is active. The bindings are the same as they were before. I cannot think of any reason why my host name does not resolve.
I did accidentally change the namesevers via URL forwarding at the registrar earlier today, but I changed them back. Right now they say ns1.mydomain.com my ipaddress and ns2.mydomain.com myipaddress.
I did inadvertently install WebDAV, could that be it? If so, how do I uninstall it?
If you can't think of anything, is there a way I can reset the DNS server and recreate new entries?
The redirects from http to https still seem to work, but the DNS does not resolve. Ooops, that is only true with Chrome. Redirects broken in Edge.
I have php website on azure in free tier.Everything works well except sqlite3 which requires the sqlite3 dll.
I downloaded the dll and did what is said here:
https://social.msdn.microsoft.com/Forums/en-US/42bf076d-883e-4818-8585-7bfedff1ff5c/how-to-enable-sqlite3-for-php-in-azure-websites?forum=windowsazurewebsitespreview
Here is the full error:
HTTP Error 500.0 - Internal Server Error
D:\Program Files (x86)\PHP\v7.0\php-cgi.exe - The FastCGI process exited unexpectedly
After that i get this error, obviously i do not have D:\Program Files (x86)\PHP\v7.0\php-cgi.exe in azure websites.
I do not have that path mapped anywhere in my code !
i have in the azure php error log.txt
PHP Warning: PHP Startup: Unable to load dynamic library 'D:\home\site\wwwroot\bin\php_sqlite3.php' - The specified module could not be found.
in Unknown on line 0
Hi,
We are facing very strange issue where File upload feature is not working in our web application and we are receiving response 502 3 12030 0 in IIS Server (Windows 2008 R2 Standard SP1 64 bit) from Jboss server (OS: Windows 2008 R2 Standard SP1 64 bit) while trying to establish a secure ssl connection from IIS to Jboss server.
Here are the details:
We have found a similar thread with hotfix available to solve the issue for Windows server 2008 SP2.
We need help to know if any hotfix is available or required for Windows server 2008 R2 standard SP1?
Regards,
Shashank
We have a main site which is non-secured. There's also a subdomain site (for a specific vendor) like this:
I have made entries in the IIS URL Rewrite 4 0r 5 times over the last week, (to redirect from http to https) and within a day it's gone.
I did one for a totally different site, and it works like a charm. Any of the experts on here know why?
Is it because I'm trying to secure a subdomain of a normal non-https site?
Thank you in advance for your assistance.
David
I am trying to develop an IIS module for implementing a fine grained authorization scheme for WebDAV access.
I have installed WebDAV on IIS (Windows 10) and I have also developed and successfully registered an IIS module. The IIS module seems to work fine and the implemented events (e.g. PreRequestHandlerExecute) are fired. However I cannot find a way to cancel / abort a request even though I have set the StatusCode to forbidden (403) and I have even called the Abort method of the Request object. I have tried many alternatives but I cannot figure out how to block a WebDAV request.
A code sample intending to block WebDAV access to all files except Word documents (extension .docx) follows.
Any help would be greatly appreciated.
Regards,
N. Nikolaou
namespace MyCustomIISModule
{
publicclassMyCustomIISModule : IHttpModule {
publicvoid Init(HttpApplication objHttpApplication)
{
objHttpApplication.PreRequestHandlerExecute += (newEventHandler(this.Application_PreRequestHandlerExecute));
}
publicvoid Dispose()
{
}
privatevoid Application_PreRequestHandlerExecute(Object source, EventArgs e)
{
HttpApplication application = (HttpApplication)source;
HttpContext context = application.Context;
string filePath = context.Request.FilePath;
string fileExtension = VirtualPathUtility.GetExtension(filePath);
string userName = context.User.Identity.Name;
if ((filePath != "/")&& (fileExtension != ".docx")) {
context.Response.StatusCode = 403;
application.Request.Abort();
}
}
}
}
I am using Windows IIS to host a website, and the root directory is by default: C:\inetpub\wwwroot. Now I wish to collect some online data (with a few form fields) and then save them toa local folder on the server (say C:\data\1.csv), with a php code (say savedata.php) running on the server side. I set the security of this local folder on the serveras "everyone" with read/write permissions. It works and I can get the user input.
My questions:
1 - Is this safe enough and what else should I set up for proper conventions?
2 - As the local folder is not a "virtual directory" with Windows IIS, my limited knowledge on this makes me feel there is no way users can write other files to this folder to add security threat to the server. Right?
3 - I wish to prevent users from reading this user input file. Is what I have done here enough?
Sorry for these basic questions. I hope they are common for people like me not from the IT background. Thanks for your help in advance.
Our app was originally written in ASP.NET. It is mostly just a set of WCF services. When users are inactive for some period of time (usually about 20 mins), the user is logged out and they have to restart the app. We have a custom membership provider in ASP.NET. At first we thought it might be some problem with ASP itself dropping authentication cookies, but we've recently come to think that this is not the case. We have now upgraded our app to ASP.NET Core - .NET Framework. In our local debug environment, the issue has stopped occurring. Kestrel (the ASP.NET Core web server) doesn't seem to have the same issue that we've been experiencing, which leads us to think that the problem is specific to IIS. Currently, when the ASP.NET Core app is running in IIS, it still boots users off after about 20 mins of inactivity. So, it seems pretty clear to us that the problem lies with IIS and not Kestrel, or ASP.NET Core.
We have tried all kinds of permutations of settings inside IIS, but we can't find the sweet spot where this problem does not occur. We think that IIS is somehow killing and restarting the Kestrel process when inactivity occurs. I have trawled through the app settings but cannot find anything that would cause this to happen. How can we diagnose this issue? Here are some screenshots of one application where this occurs:
Do these settings raise any alarm bells for anyone? Are there settings outside this section that could be causing the issue?
Hi,
Could you please some one share me the link that gives internal working of IIS server starting from accepting the request, processing the request, sending the response back to the requestor and finally what happens once the response is send back to the requestor(the status of AppDomain, Pools...)?
Thanks & Regards,
Shaji Kumar VK.
Hello,
does anyone knows if appcmd runned with params:
appcmd list requests /text:*
can catch outgoing remote connection to SMTP port? This command allows to find out for sure what remote HTTP(S) connections are currently being used but I'm wondering if we can also see any SMTP outgoing connections. I know I can turn on logging in Windows Firewall but this log does not show from what process connection has been made and when having multiple sites on system I would like to find out which sites are performing remote SMTP connections.
Thanks
Hello,
I have two IIS server using shared configuration. Shared config file is located on network share.
To connect to the share IIS uses domain account: mydomain\myshareaccount.
The account is not locked/disabled, password is valid.
Everything worked for quite long time until a reboot of both web servers.
After reboot I couldn’t start IIS anymore, because of the error message:
“The Windows Process Activation Service service terminated with the following error:
Access is denied.”
I tried to run Windows Process Activation Service separately, but the same error message.
I run Process Monitor and I see following issue:
High Resolution Date & Time: 2/21/2017 11:35:50.1655989 PM
Event Class: File System
Operation: CreateFile
Result: NAME NOT FOUND
Path: C:\inetpub\temp\appPools\noq1qehh.oli
TID: 8332
Duration: 0.0000103
Desired Access: Read Attributes
Disposition: Open
Options: Open Reparse Point
Attributes: n/a
ShareMode: Read, Write, Delete
AllocationSize: n/a
Impersonating: mydomain\myshareaccount
About 15 errors message that kind appear when I filtered the output in process monitor.
What I don’t understand, why WAS service wants to write in the C:\inetpub\temp\appPools\noq1qehh.oliwith mydomain\myshareaccount? WAS service is running as Local Account. In my case WAS service tries to write tmp files to C:\inetpub\temp\appPools\ with account which is used in IIS for connection to UNC location. Is this correct?
When I go to ACL of C:\inetpub\temp\appPools\noq1qehh.oli only SYSTEM andLocal Administrators group have permission for that file.
Permission for only that file is not inherited from C:\inetpub\temp\appPools wheremydomain\myshareaccount has access. I guess WAS service creates the file and set ACL so onlySYSTEM and Local Administrators have access to.
When I switch both of IIS server to use local configuration everything works just fine, IIS and WAS service are up and running. No Access Denied for C:\inetpub\temp\appPools directory. Temp files are created with the same ACLSYSTEM and Local Administrators.
Does anybody have idea what could be cause of this issue?
Thank you and Regards,
Lukasz
Hi everyone,
I am experiencing a strange intermittent issue with Kerberos authentication, between our SQL server and web application.
Some background:
Basically, what happens is that when I access the application through http://mywebapp.domain.com, everything works flawlessly and keeps working flawlessly. Authentication works fine, no problems whatsoever.
However, when I change the binding to https and assign the wildcard certificate, the web application works for some time, and then starts to fail: Unable to authenticate. The credentials are not delegated correctly to the SQL server.
The SQL server shows the infamous "Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON"error, Error: 18456, Severity: 14, State: 5. In the system log of the IIS server, these entries pop up:
Error Code: 0xd KDC_ERR_BADOPTION
Extended Error: 0xc0000272 KLIN(0)
I haven't been able to determine any pattern as to after how long the failure crops up. It can be between 20 minutes and 2 hours. What I do notice is that delegation starts working again after 15 minutes. And then it is waiting for the next failure.
When I switch back to http, everything is fine.
I have done a lot of searching, Googling and whatever. I have no clue as to what is causing this odd behavior. Some people mention TCP/IP autotuning as a possible cause, but that seems to be on Windows 7 and 2008 R2 only.
Any of you have ideas what might be causing this? Any thoughts or ideas are much appreciated.
Thanks,
Erwin G.
hello
when I disable tls1.0 for security reason some site features stop working. from what I heard it depends on the version of .net the developers are using for their sites..
is there a way for me to tell what the sites are using so I can see what needs to upgraded ?
Hello Friendz,
I need a litter bit help, I have an ASP.NET application which is run perfectly on a local system, but I when deploying on iis it gives authentication required issue on some pages.
although I have given all the permissions and rights, but the same issue facing
below is the link for a snapshot, please check and suggest any authenticate solution.
https://www.dropbox.com/s/rk2dq3vh9iuzmo4/issue.jpg
My site requires one of the handler mappings on the webserver to be moved the top of the list. I've tried removing it and re-adding it in my web.config but it goes back to its usual place towards the bottom of the list.
How can i specify in my web.config that I want a particular handler mapping to be 1st in the list?
Thanks.
Hi,
I'm using FTPS to protect access to IIS FTP services, with self signed certificates. Starting from version 3.24, filezilla reports that "Key usage violation in certificate has been detected." because there is some restriction on the certificate key usage parameters. It seems that the IIS certificate is not full RFC 5280 4.2.1.3 compliant.
Any idea to create a compliant certificate on IIS?
thanks
