« Previous Next »

Thread: 403 - Forbidden: Access is denied using IIS 7 from a web browser

Last post 12-10-2008 5:54 PM by anilr. 3 replies.

Average Rating Rate It (5)

RSS

Page 1 of 1 (4 items)

Sort Posts:

Shortcuts

Search | Active Posts | Unanswered Posts | View all users

  • 12-04-2008, 5:53 PM

    • clindsay
    • Not Ranked
    • Joined on 12-04-2008, 10:02 PM
    • Posts 2

    403 - Forbidden: Access is denied using IIS 7 from a web browser

    Reply Contact

    Hi All,


    I am using a win 2008 server with IIS 7 to host a php web site for the first time.  

    The server is part of a domain but not a DC only a Web Server.  I am using port 81 as a test port which is reflected in the website config.

    I can telnet the external dns with the port number.  seems OK

    I have added the various web extentions and I can browse the website from IIS from the server but cannot access the site through a PC browser on the same network using the dns resolution or an ip address with the port 81 as a suffix.

    I have tried creating a new Anonymous user and tested the access :

    The specified user credentials are authorized to access the specified physical path.

    *******

    From the browser I obtain the message :

    403 - Forbidden: Access is denied

    I have summarised the log. %SystemDrive%\inetpub\logs\FailedReqLogFiles

    Url http://www.xxxxx.com:81
    App Pool ReportServer$MS$DPM2007$
    Authentication anonymous
    User from token LO-BACKUP\IUSER_LO-DC2
    Activity ID {00000000-0000-0000-0C00-0080000000F8}

    68. view trace Warning -MODULE_SET_RESPONSE_ERROR_STATUS  IIS Web Core
    69. view trace Warning -SECURITY_DENIED_BY_ACCESS_FLAGS 

    Any help would be greatly appresiated as I am tearing my hair out.

     Thank you in advance
    Tags:

  • 12-04-2008, 6:46 PM In reply to

    • anilr
    • Top 10 Contributor
    • Joined on 05-23-2006, 10:13 PM
    • Redmond, WA
    • Posts 2,343

    Re: 403 - Forbidden: Access is denied using IIS 7 from a web browser

    Reply Contact

    This is because you have set the NoRemoteRead flag in the system.webServer/handlers/accessPolicy flag - you also seem to have the NoRemoteExecute and NoRemoteScript flags set.

    Anil Ruia
    Senior Software Design Engineer
    IIS Core Server

  • 12-05-2008, 3:41 AM In reply to

    • clindsay
    • Not Ranked
    • Joined on 12-04-2008, 10:02 PM
    • Posts 2

    Re: 403 - Forbidden: Access is denied using IIS 7 from a web browser

    Reply Contact

    Hi Anilr,

    Thanks for the response, it is much appreciated

    Where do I configure the NoRemoteRead flag, NoRemoteExecute and NoRemoteScript flags set in the config file?

    Once again Thanks

     

    <?xml version="1.0" encoding="UTF-8"?>
    <configuration>
        <system.webServer>
            <directoryBrowse enabled="true" showFlags="Date, Time, Size, Extension, LongDate" />
      

            <security>
                <authorization>
                    <remove users="*" roles="" verbs="" />
                    <add accessType="Allow" users="?" />
                </authorization>
            </security>
            <defaultDocument enabled="false">
                <files>
                    <remove value="default.aspx" />
                    <remove value="iisstart.htm" />
                    <remove value="index.htm" />
                    <remove value="Default.asp" />
                    <remove value="Default.htm" />
                </files>
            </defaultDocument>
            <tracing>
                <traceFailedRequests>
                    <add path="*">
                        <traceAreas>
                            <add provider="ASP" verbosity="Verbose" />
                            <add provider="ASPNET" areas="Infrastructure,Module,Page,AppServices" verbosity="Verbose" />
                            <add provider="ISAPI Extension" verbosity="Verbose" />
                            <add provider="WWW Server" areas="Authentication,Security,Filter,StaticFile,CGI,Compression,Cache,RequestNotifications,Module" verbosity="Verbose" />
                        </traceAreas>
                        <failureDefinitions statusCodes="403" />
                    </add>
                </traceFailedRequests>
            </tracing>
        </system.webServer>
        <system.web>
            <identity impersonate="true" />
            <authentication mode="windows" />
            <trust level="High" />
        </system.web>
        <connectionStrings>
            <remove name="LocalSqlServer" />
        </connectionStrings>
    </configuration>

  • 12-10-2008, 5:54 PM In reply to

    • anilr
    • Top 10 Contributor
    • Joined on 05-23-2006, 10:13 PM
    • Redmond, WA
    • Posts 2,343

    Re: 403 - Forbidden: Access is denied using IIS 7 from a web browser

    Reply Contact

    You must have set it in applicationhost.config

    Anil Ruia
    Senior Software Design Engineer
    IIS Core Server
Page 1 of 1 (4 items)
Microsoft Communities