IIS and HTTP 401.0 – Unauthorized

iis

I deployed my ASP.NET MVC application to my local IIS (same computer) and I'm getting

HTTP 401.0 - Unauthorized

after accessing the application through the browser.

I'm using forms authetication and on the development server it works fine.

I depolyed also a default ASP.NET MVC project and its working fine, so it must be something application related. Is there any way to get more information on this particular error ? Any log file or something. The message HTTP 401.0 – Unauthorized isn't realy helpful.

Found some logs c:\inetpub\logs\LogFiles\W3SVC1\ but there wasn't anything.

Tested on
Windows 7,IIS 7.5 and Windows Server 2008 R2 IIS 7.5

Best Answer

First, check whether this is a permissions issue. Try this:

Select the web application returning 401 - Unauthorized, and double-click the Authentication feature. Right-click the "Anonymous Authentication" provider and select edit. Switch the default anonymous user account ("IUSR") to ApplicationPoolIdentity. Now, right-click the web application in the left pane, select Edit Permissions..., select the Security tab, click Edit -> Add and add IIS APPPOOL\NameOfAppPool. Make sure the Application Pool Identity has read and execute permissions of the folder.

If you want to enable logging, check out this TechNet article: http://technet.microsoft.com/en-us/library/cc754631(WS.10).aspx

Related Solutions

Iis – asp.net mvc 2 web application inside a Web site

There is nothing picking up the phone...

IIS is defaulting all the way to checking if directory browsing is turned on. This implies ASP.net is not getting the request at all.

Make sure there is virtual directory setup where folder looks different that regular folders.

Unfortunately I don't do IIS 7.5, still IIS 6.0.

In 6.0 I would right clikc the folder and click Create App. and then goto the last tab and make ure ASP.net was confgured on the folder.

The last possbility is that the ASP.Net routing engine on root is sucking up all the requests for the sub.

IIS Basic Authorization ala .htaccess/.htpasswd in apache

First of all you need to enable Basic Authentication. You can find this setting in the Authentication feature for the site in IIS Manager:

enter image description here

Double click on the icon then right click on Basic Authentication and select Enable:

enter image description here

You can also configure this directly in your web.config file (your application doesn't even have to be an ASP.NET application):

<?xml version="1.0" encoding="UTF-8"?>
<configuration>
    <system.webServer>
        <security>
            <authentication>
                <basicAuthentication enabled="true" />
            </authentication>
        </security>
    </system.webServer>
<configuration>

This will only work in the web.config provided that this feature has been delegated as Read/Write.

Out of the box you would need to create a separate Windows 2008 account for each login.

If you wanted to use a custom store (SQL Server, Membership Service) then you'd need to write your own Basic Authentication module:

Developing a Module Using .NET

Best Answer

Related Solutions

Iis – asp.net mvc 2 web application inside a Web site

IIS Basic Authorization ala .htaccess/.htpasswd in apache

Related Topic