403 Forbidden errors w/ windows authentication

Ask a Question related to ASP.NET Security, Design and Development.

  1. John #1

    Default 403 Forbidden errors w/ windows authentication

    Hello

    I am developing a intranet application in an all Windows environment, but I'm running into a authentication snag. I use Windows Integrated Security on the web server so that I can identify who the user is. I do this with these lines.

    Dim objContext As System.Web.HttpContext = System.Web.HttpContext.Curren
    sLanId = objContext.User.Identity.Name(

    Where sLanId contains the <domain name>\<user name> string. I am not using impersonation. This works just fine on my development server (which resides in a different domain than my computer)

    The problem is when we moved the application to a test/staging servers in a third domain, we continually get a "403 Forbidden" error, even though the domain trusts are in place. The one difference is that the test/staging environment is load-balanced across two servers. Has anyone seen this? Is there a .NET policy that needs to be created?

    As far as I understand, a 403 error states that IIS has rejected the request. If there were NTFS permissions that were incorrect, I would have seen a 401 error, so I'm fairly confident the file permissions are not causing this

    If you need further info, I can provide, but I'm pretty stumped. I've never had Windows integrated security not authenticate in a homogenous environment such as this

    Thanks
    Joh

    John Guest
    Reply With Quote Reply With Quote

    2. Similar Questions and Discussions

    1. Authentication Errors
      What would cause an error like this ? http://tel3deal.com/pics/contributecs3.gif
    2. Should I return a SOAP Fault or 401 (Forbidden) when authentication fails?
      Hi, I'm writing a web service and I can't find any docs that tell me exactly what the standard behaviour should be for an authentication failure....
    3. Forms Authentication and Custom errors
      Hi all, I've searched this problem and sort of found the resolution but cant get it to work. Web site using forms authentication, just...
    4. Forms authentication with Windows authentication
      Hi, I have an ASP.NET web site that uses IIS Basic Authentication and accesses an OLAP Server at various stages. The OLAP Server authentication...
    5. Authentication and custom errors
      I have an intranet application that uses w2k Integrated Windows Authentication to authenticate users. We now have a situation where people will be...
  2. John #2

    Default RE: 403 Forbidden errors w/ windows authentication

    Nevermind

    Added <deny users="?"/> in web config to force authentication. What actually caused the 403 was that one of the servers did not have a valid default document name defined.

    Thanks for looking

    John
    John Guest
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may post replies
  • You may not post attachments
  • You may not edit your posts

Forum Rules


1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139