When I go to publish my ASP.NET 2.0 website on IIS 7 on my computer that has Vista Business im having a hard time. I get this error:
Server Error in Application "Default Web Site"
HTTP Error 401.3 - Unauthorized
Description: You do not have permission to view this directory or page because of the access control list (ACL) configuration or encryption settings for this resource on the Web server.
Error Code: 0x80070005
Notification: AuthenticateRequest
Module: IIS Web Core
Requested URL: http://localhost:80/music
Physical Path: C:\Users\Jonathan\Documents\webroot
Logon User: Anonymous
Logon Method: Anonymous
Handler: StaticFile
Most likely causes:
* The user authenticated by the Web server does not have permission to open the file on the file system.
* If the resource is located on a Universal Naming Convention (UNC) share, the authenticated user may not have sufficient share and NTFS permissions, or the permissions on the share may not match the permissions on the physical path.
* The file is encrypted.
What you can try:
* Open Windows Explorer and check the ACLs for the file that is being requested. Make sure that the user accessing the Web site is not being explicitly denied access, and that they do have permission to open the file.
* Open Windows Explorer and check the ACLs for the share and the physical path. Ensure that both ACLs allow the user to access the resource.
* Open Windows Explorer and check the encryption properties for the file that is being requested. (This setting is located in the Advanced attribute properties dialog.)
* Create a tracing rule to track failed requests for this HTTP status code. For more information about creating a tracing rule for failed requests, click here.
More Information... The user trying to access the page was successfully logged on, but the user does not have permission to access the resource. This means the access control list (ACL) for the resource either does not include the user or explicitly denies the user. Check the ACL for the resource and add the user to the ACL. If the content is located on a share, ensure both NTFS and share permissions allow the user access. It is also possible that the user is part of a group that is denied access.
Microsoft Knowledge Base Articles:
* 907273
* 332142
Server Version Information: Internet Information Services 7.0.
I think its a permission problem on the folder becaues when I added the NETWORK SERVICE permission to the folder that contains the website files, I got this new error. Before it was some other error. Any ideas?
forums.iis.net is the best place for this type of question. That's a well watched forum specifically for IIS.
But, a pointer in the meantime: try out Process Monitor from
www.sysinternals.com and after running it during the failure, search for the word denied. That should tell you the missing permission and what it needs. For example, NETWORK SERVICE and the anonymous or authenticated user will need permissions to the
webroot folder, but ASP.NET may also need list permissions for all of the folders above it: (documents, jonathan and users) Process Monitor will tell you for sure.
You do not have permission to view this directory or page because of the access control list (ACL) configuration or encryption settings for this resource on the Web server.
Doesn't get much plainer, check NTFS permissions and encryption.
I have the same problem ; I couldn't delete a file using asp.net.vb. Typical ntfs permission issue. I looked at security tab but I am not suer which user should have write permssion to folder?
This was very helpful, however, I still had a lot of trouble with IIS 7.5 (Windows 2008 R2). I had reconfigured the App Pools to use the network service account. I added the Network
Service account to the IISUsers local group. I than added that group to my INETPUB folder. (It is a test server, so I am not over concerned about permissions). After doing all of this, I still received the 401.3 error. Using the process monitor, I did find
that IUSR was the account that was causing the exception, so I added the IUSR account to the IISUsers account which already had pretty much full access to the folder. Still no dice. After scratching my head for a while, I finally added the IUSR account to directly
to the folder permissions, and that worked.. I am happy, but that was not what I was expecting. There really should not be a difference between having the IUSR account directly add and having the IUSR account a member of a group that has the same access..?
mabrito
Member
11 Points
19 Posts
ASP.NET 2.0 IIS 7 hosting problems
Nov 05, 2007 01:30 PM|LINK
When I go to publish my ASP.NET 2.0 website on IIS 7 on my computer that has Vista Business im having a hard time. I get this error:
Server Error in Application "Default Web Site" HTTP Error 401.3 - Unauthorized Description: You do not have permission to view this directory or page because of the access control list (ACL) configuration or encryption settings for this resource on the Web server. Error Code: 0x80070005 Notification: AuthenticateRequest Module: IIS Web Core Requested URL: http://localhost:80/music Physical Path: C:\Users\Jonathan\Documents\webroot Logon User: Anonymous Logon Method: Anonymous Handler: StaticFile Most likely causes: * The user authenticated by the Web server does not have permission to open the file on the file system. * If the resource is located on a Universal Naming Convention (UNC) share, the authenticated user may not have sufficient share and NTFS permissions, or the permissions on the share may not match the permissions on the physical path. * The file is encrypted. What you can try: * Open Windows Explorer and check the ACLs for the file that is being requested. Make sure that the user accessing the Web site is not being explicitly denied access, and that they do have permission to open the file. * Open Windows Explorer and check the ACLs for the share and the physical path. Ensure that both ACLs allow the user to access the resource. * Open Windows Explorer and check the encryption properties for the file that is being requested. (This setting is located in the Advanced attribute properties dialog.) * Create a tracing rule to track failed requests for this HTTP status code. For more information about creating a tracing rule for failed requests, click here. More Information... The user trying to access the page was successfully logged on, but the user does not have permission to access the resource. This means the access control list (ACL) for the resource either does not include the user or explicitly denies the user. Check the ACL for the resource and add the user to the ACL. If the content is located on a share, ensure both NTFS and share permissions allow the user access. It is also possible that the user is part of a group that is denied access. Microsoft Knowledge Base Articles: * 907273 * 332142 Server Version Information: Internet Information Services 7.0.I think its a permission problem on the folder becaues when I added the NETWORK SERVICE permission to the folder that contains the website files, I got this new error. Before it was some other error. Any ideas?OWScott
Participant
1939 Points
360 Posts
ASPInsiders
MVP
Re: ASP.NET 2.0 IIS 7 hosting problems
Nov 06, 2007 01:31 PM|LINK
forums.iis.net is the best place for this type of question. That's a well watched forum specifically for IIS.
But, a pointer in the meantime: try out Process Monitor from www.sysinternals.com and after running it during the failure, search for the word denied. That should tell you the missing permission and what it needs. For example, NETWORK SERVICE and the anonymous or authenticated user will need permissions to the webroot folder, but ASP.NET may also need list permissions for all of the folders above it: (documents, jonathan and users) Process Monitor will tell you for sure.
Microsoft MVP - IIS
Vaasnet
www.vaasnet.com
jeff@zina.co...
All-Star
87677 Points
11637 Posts
Moderator
Re: ASP.NET 2.0 IIS 7 hosting problems
Nov 13, 2007 12:08 PM|LINK
Doesn't get much plainer, check NTFS permissions and encryption.
Jeff
mabrito
Member
11 Points
19 Posts
Re: ASP.NET 2.0 IIS 7 hosting problems
Nov 13, 2007 03:20 PM|LINK
Yeah I know, its working now though. I forgot to update this thread when I fixed it.
patron
Member
200 Points
143 Posts
Re: ASP.NET 2.0 IIS 7 hosting problems
Sep 04, 2008 04:52 PM|LINK
I have the same problem ; I couldn't delete a file using asp.net.vb. Typical ntfs permission issue. I looked at security tab but I am not suer which user should have write permssion to folder?
IUSR , IIS_IUSR , SYSTEM, ETC.
thanks
p.s. I am using iis7 under vista ultimate
jeff@zina.co...
All-Star
87677 Points
11637 Posts
Moderator
Re: ASP.NET 2.0 IIS 7 hosting problems
Sep 04, 2008 07:23 PM|LINK
NETWORK SERVICE.
Jeff
praveen.chan...
Member
2 Points
1 Post
Re: ASP.NET 2.0 IIS 7 hosting problems
Oct 21, 2009 06:21 AM|LINK
I think, You set the full permission to the user "Everyone" for the physical directory.
Then try......
Hostingprevi...
Member
65 Points
34 Posts
Re: ASP.NET 2.0 IIS 7 hosting problems
Nov 10, 2009 05:48 AM|LINK
Some information about Microsoft IIS7 hosting could be found at
http://www.webhost4lifereview.com/microsoft-iis-7-web-hosting/
Good luck!
IIS7 Hosting
kgolding
Member
18 Points
8 Posts
Re: ASP.NET 2.0 IIS 7 hosting problems
Mar 18, 2010 09:00 PM|LINK
This was very helpful, however, I still had a lot of trouble with IIS 7.5 (Windows 2008 R2). I had reconfigured the App Pools to use the network service account. I added the Network Service account to the IISUsers local group. I than added that group to my INETPUB folder. (It is a test server, so I am not over concerned about permissions). After doing all of this, I still received the 401.3 error. Using the process monitor, I did find that IUSR was the account that was causing the exception, so I added the IUSR account to the IISUsers account which already had pretty much full access to the folder. Still no dice. After scratching my head for a while, I finally added the IUSR account to directly to the folder permissions, and that worked.. I am happy, but that was not what I was expecting. There really should not be a difference between having the IUSR account directly add and having the IUSR account a member of a group that has the same access..?
g_mani
Contributor
2055 Points
586 Posts
Re: ASP.NET 2.0 IIS 7 hosting problems
Nov 01, 2010 11:02 AM|LINK
Hi patron,
This old post helped me to solve the issue. I just add IUSR in security tab and gave full access. Now working fine.
Thanks...
Please Mark as Answer If this is helpful.