I am trying to get started with using IIS. I created a new site on IIS Manager, mapped it to a folder on my file system and added index.html to the folder. I have set the port to 85 for this site. When I try to access <code>http://localhost:85/index.html</code>, I get the following error message: <blockquote> 401.3 - unathorized - You do not have permission to view this directory or page because of the access control list (ACL) configuration or encryption settings for this resource on the Web server. </blockquote> I gave read access to everybody on the folder and tried again. I could then access the page. I then compared the properties of my folder with that of wwwroot. I found that wwwroot had read access on IIS_IUSRS...When I did the same on my folder and tried again, I got the above error again. I checkedthat anonymous access is enabled by default, but I still get this error. Why does this happen? What is the correct way to resolve the problem?

I have struggled on this same issue for several days. It can be solved by modifying the security user access properties of the file system folder on which your site is mapped. But IIS_IUSRS is not the only account you must authorize. <ul> <li>In IIS management console, in the Authentication part of the configuration of your site, modify the "Anonymous authentication" line and check the account set as "Specific user" (mine is IUSR).</li> <li>Give read and execution permission on the folder of your site to the account listed as the specific user.</li> </ul> OR <ul> <li>In IIS management console, in the Authentication part of the configuration of your site, modify the "Anonymous authentication" line by selecting "Identity of the application pool" instead of "Specific user".</li> </ul>

Here is what worked for me. <ol> <li>Set the app pool identity to an account that can be assigned permissions to a folder.</li> <li>Ensure the source directory and all related files have been granted read rights to the files to the account assigned to the app pool identity property</li> <li>In IIS, at the server root node, set anonymous user to inherit from app pool identity. (This was the part I struggled with)</li> </ol> To set the server anonymous to inherit from the app pool identity do the following.. <ul> <li>Open IIS Manager (inetmgr)</li> <li>In the left-hand pane select the root node (server host name)</li> <li>In the middle pane open the 'Authentication' applet</li> <li>Highlight 'Anonymous Authentication'</li> <li>In the right-hand pane select 'Edit...' (a dialog box should open)</li> <li>select 'Application pool identity'</li> </ul>

IIS - 401.3 - Unauthorized

Tags:

iis

iis-7

I am trying to get started with using IIS. I created a new site on IIS Manager, mapped it to a folder on my file system and added index.html to the folder. I have set the port to 85 for this site. When I try to access http://localhost:85/index.html, I get the following error message:

401.3 - unathorized - You do not have permission to view this directory or page because of the access control list (ACL) configuration or encryption settings for this resource on the Web server.

I gave read access to everybody on the folder and tried again. I could then access the page.

I then compared the properties of my folder with that of wwwroot. I found that wwwroot had read access on IIS_IUSRS...When I did the same on my folder and tried again, I got the above error again. I checkedthat anonymous access is enabled by default, but I still get this error.

Why does this happen? What is the correct way to resolve the problem?

831

asked Oct 03 '13 15:10

Aadith Ramia

2 Answers

I have struggled on this same issue for several days. It can be solved by modifying the security user access properties of the file system folder on which your site is mapped. But IIS_IUSRS is not the only account you must authorize.

In IIS management console, in the Authentication part of the configuration of your site, modify the "Anonymous authentication" line and check the account set as "Specific user" (mine is IUSR).
Give read and execution permission on the folder of your site to the account listed as the specific user.

In IIS management console, in the Authentication part of the configuration of your site, modify the "Anonymous authentication" line by selecting "Identity of the application pool" instead of "Specific user".

answered Oct 25 '22 16:10

groch

Here is what worked for me.

Set the app pool identity to an account that can be assigned permissions to a folder.
Ensure the source directory and all related files have been granted read rights to the files to the account assigned to the app pool identity property
In IIS, at the server root node, set anonymous user to inherit from app pool identity. (This was the part I struggled with)

To set the server anonymous to inherit from the app pool identity do the following..

Open IIS Manager (inetmgr)
In the left-hand pane select the root node (server host name)
In the middle pane open the 'Authentication' applet
Highlight 'Anonymous Authentication'
In the right-hand pane select 'Edit...' (a dialog box should open)
select 'Application pool identity'

answered Oct 25 '22 16:10

barrypicker

Related questions
                            
                                IIS app pools, worker processes, app domains
                            
                                MVC4 HTTP Error 403.14 - Forbidden
                            
                                What is limiting the # of simultaneous connections my ASP.NET application can make to a web service?
                            
                                Could not load type 'System.ServiceModel.Activation.HttpModule' from assembly 'System.ServiceModel
                            
                                "401 Unauthorized" on a directory
                            
                                How do you use https / SSL on localhost?
                            
                                double escape sequence inside a url : The request filtering module is configured to deny a request that contains a double escape sequence
                            
                                Can't start site in IIS (use by another process)
                            
                                NuGet: 'X' already has a dependency defined for 'Y'
                            
                                IIS Request Timeout on long ASP.NET operation
                            
                                The service cannot accept control messages at this time
                            
                                IIS7 Cache-Control
                            
                                Find if the installed PHP is threadsafe or nonthreadsafe?
                            
                                How do I enable gzip compression when using MVC3 on IIS7?
                            
                                Comet implementation for ASP.NET? [closed]
                            
                                Error: "The configuration section 'system.webServer/management/delegation' cannot be read because it is missing schema
                            
                                CS1617: Invalid option ‘6’ for /langversion; must be ISO-1, ISO-2, 3, 4, 5 or Default
                            
                                IIS: Idle Timeout vs Recycle
                            
                                IIS Express gives Access Denied error when debugging ASP.NET MVC
                            
                                What's the difference between the Personal and Web Hosting certificate store?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!

Donate Us With