Can't access IIS 7 server URL from the same IIS 7 server.
Posted
by
Kevin Raffay
on Server Fault
See other posts from Server Fault
or by Kevin Raffay
Published on 2011-01-31T04:09:16Z
Indexed on
2011/01/31
7:28 UTC
Read the original article
Hit count: 619
windows-server-2003
|windows-authentication
We have an intranet site ie, xxx.yyyy.com, that users access by entering "http"://xxx.yyy.com.
Our problems started when we migrated to IIS 7 running on a new 2003 server. We got rid of our single-sign on code and implemented a security model where we capture a user's domain credentials which we then authenticate against a DB.
In order to get the domain credentials passed to our ASP.NET app, we have the following settings:
Anonymous Authentication:Disabled ASP.NET Impersonation: Enabled Basic/Digest/Forms Authentication: Disabled Windows Authentication: Enabled
We allow "*" and deny "?" in the web.config.
Browsing "http"://xxx.yyy.com from any client PC results in a domain login prompt, and if your enter a proper user/pwd, you can get in.
However, browsing "http"://xxx.yyy.com while remoting into the server results in 3 domain login prompts and eventually a 401 error - unauthorized.
We have traced this behavior to problems with our web site where we have pages doing "screen scraping" using the HttpRequest calling a url on the same server.
When doing a HttpRequest from any other client, using a test harness that passes authorized credentials, all is good. So internal HttpRequest calls on the server fail, just like attempts to browse that server's url from within a remote session.
Why would a to "http"://xxx.yyy.com on server xxx.yyy.com fail authentication?
© Server Fault or respective owner