Previous Next

• 05-14-2008, 8:20 AM

  saneaprodan Joined on 05-14-2008, 7:58 AM Posts 5 saneaprodan

  Disable WebDAV protocol on IIS 6.0 Reply Contact Hi all,  I need to disable WebDAV Http extensions on my IIS 6.0 server. I found this Microsoft link on how to do this on IIS 5.0: http://support.microsoft.com/kb/241520 I've tried the registry settings approach, but I can still open my WSS 3.0 site using File->Open -> Open as Web Folder option. Also, the IIS Lockdown tool is only or IIS 4.0, 5.0.  So how does one disable WebDav in IIS 6.0?

  Tags: IIS 6.0WebDav

• 05-14-2008, 9:04 AM

  In reply to

  tomkmvp Joined on 03-20-2003, 10:27 AM Lawrenceville, NJ Posts 3,460 tomkmvp	Re: Disable WebDAV protocol on IIS 6.0 Reply Contact Simple ... do not enable WebDAV in the web services configuration. http://support.microsoft.com/kb/332060 Tom Kaminski IIS MVP http://mvp.support.microsoft.com/ http://blogs.iis.net/tomkmvp/

• 05-14-2008, 9:19 AM

  In reply to

  saneaprodan Joined on 05-14-2008, 7:58 AM Posts 5 saneaprodan	Re: Disable WebDAV protocol on IIS 6.0 Reply Contact I really wish it were that simple. I've disabled WebDAV extensions from Web server extensions node, but my WSS 3.0 site can still be opened using win explorer. I did mention I have SharePoint Services 3.0 installed, did I? Am I the only one with this behavior?

• 05-14-2008, 4:09 PM

  In reply to

  tomkmvp Joined on 03-20-2003, 10:27 AM Lawrenceville, NJ Posts 3,460 tomkmvp	Re: Disable WebDAV protocol on IIS 6.0 Reply Contact Ahh yes, WSS does strange things to IIS.  You may get a better response in a WSS specific forum ... Tom Kaminski IIS MVP http://mvp.support.microsoft.com/ http://blogs.iis.net/tomkmvp/

• 05-14-2008, 4:23 PM

  In reply to

  saneaprodan Joined on 05-14-2008, 7:58 AM Posts 5 saneaprodan

  Re: Disable WebDAV protocol on IIS 6.0 Reply Contact On MSDN forums I was told to look somewhere else too :)  http://forums.microsoft.com/MSDN/ShowPost.aspx?PostID=3328705&SiteID=1  I've tried all sorts of things now, from IIS 5.0 registry settings, to IIS manager web server extensions, and even tried to deny Everyone access to the httpetx.dll from C:\WINDOWS\system32\inetsrv... and of course did an iisreset after each change... and I still can open the WSS web site using DAV client :) There's also the IIS lockdown tool, but that's only for IIS 4.0, 5.0.. This is very, very strange...

• 05-15-2008, 8:05 AM

  In reply to

  tomkmvp Joined on 03-20-2003, 10:27 AM Lawrenceville, NJ Posts 3,460 tomkmvp	Re: Disable WebDAV protocol on IIS 6.0 Reply Contact It may not be possible.  This is probably the same method used by the MS Office apps to connect to SharePoint, which is a key feature.  Killing Explorer access would most likely break Office access. Tom Kaminski IIS MVP http://mvp.support.microsoft.com/ http://blogs.iis.net/tomkmvp/

• 05-15-2008, 11:00 AM

  In reply to

  saneaprodan Joined on 05-14-2008, 7:58 AM Posts 5 saneaprodan

  Re: Disable WebDAV protocol on IIS 6.0 Reply Contact I disabled WebDAV access by prohibiting _vti_aut/author.dll and owssvr.dll from Windows SharePoint Services 3.0 web service extensions. And yes, you are right, disabling owssvr.dll seems to break Office access to the files, while disabling _vti_aut/author.dll disabled the ability to save the file back to server.  Here are some resources on this:  http://msdn.microsoft.com/en-us/library/ms947858.aspx. Although out of date, they did help me.

• 05-27-2008, 10:35 AM

  In reply to

  maxtarass Joined on 05-27-2008, 2:17 PM Posts 1 maxtarass

  Re: Disable WebDAV protocol on IIS 6.0 Reply Contact Hi Exact same issue here. I did a lot of digging with no success. Even made a call to Microsoft. I think that's a big issue, security broblem, whatever you want to call it. If you customize MOSS as we did users can always around it and use webdav to access the folders and library under MOSS..not a good design at all. It seems that there is really no way around it keeping office integration in mind.

• 05-27-2008, 10:53 AM

  In reply to

  saneaprodan Joined on 05-14-2008, 7:58 AM Posts 5 saneaprodan

  Re: Disable WebDAV protocol on IIS 6.0 Reply Contact   Thanks for sharing, Just wanted to see if you do have the same issue. The problem with my case is that I need to enable SOAP protocol and in the same time disable WebDAV. Now in WSS this is an atomic permission - Use Remote Interfaces. But as far as I know you can disable WebDAV while keeping "Use Client Integration Features" permission. Did you try to configure your permissions in such manner? Or do your customization rule out this possibility?