Last post Apr 05, 2021 05:01 AM by yij sun
Apr 02, 2021 03:36 PM|ELNerdo79|LINK
Receiving this error message after changing IIS and .NET Authorization Rules to only Allow local "Administrators" roles
OS: Windows Server 2016 running IIS 10
Our Application Pool is running under an ApplicationPoolIdentity. Anonymous Authentication is enabled and running App Pool identity. ASP.NET impersonation is enabled as well. Windows Authentication is disabled (this is an externally facing website)
I have added the IIS AppPool\AppPool to the IIS_IUSRS group, Administrator group, and Users group.
I also granted Full Control ACLs for IIS AppPool\AppPool and the IIS_IUSRS group to the Website path (using icacls "WebsitePath" /grant "IIS AppPool\AppPool:(OI)(CI)(IO)F" /T)
Still, no luck. just keep getting a 401. running Process Monitor doesn't show any error status or permission issues. There is nothing in he server event logs.
What am I missing still??
Apr 05, 2021 05:01 AM|yij sun|LINK
As far as I think,you need to change Anonymous user identity from Application pool identity to Specific User.You could follow bellow steps:
1.IIS Manager → Sites → Website
2.Double click "Authentication"
3.Select Anonymous Authentication from the Actions panel, select Edit
4.Select Specific User
Just like this: