Question about IIS security settings

  • Thread starter Thread starter Simon Harvey
  • Start date Start date
S

Simon Harvey

Hi everyone,

A quick question on IIS security settings. Any help would be very much
appreciated.

A site that I have just become an administrator for uses forms
authentication in the application's code.

Under Directory Security in IIS however, the checkbox for Integrated Windows
Authentication. I know for a fact that this is working, but I am wondering
if this is the best way to have the site configured? I'm not sure I want to
try and fix it though, basically because it ain't broke.

I am also working on a new site that uses forms authentication. I've been
working on it for a while now and authentication had been working fine.
However, I noticed that this site was also set up for WIA so I switched it
off. From that point on I have been unable to debug getting one of the
standard debugging error message : You do not have permission to debug the
server.

I have tried everything I know to get debugging working again.
I am an administrator
I am a debugger user and a VS Developer
The asp worker process account is also a debugger

Does anyone know what I need to do to get debugging working again? (I could
just switch it back but I have a feeling that that isn't quite the way it
should be)

Any help with this area would be really very helpful

Thanks all

Simon
 
Simon said:
I am also working on a new site that uses forms authentication. I've been
working on it for a while now and authentication had been working fine.
However, I noticed that this site was also set up for WIA so I switched it
off. From that point on I have been unable to debug getting one of the
standard debugging error message : You do not have permission to debug the
server.

I have tried everything I know to get debugging working again.
I am an administrator
I am a debugger user and a VS Developer
The asp worker process account is also a debugger

Does anyone know what I need to do to get debugging working again? (I could
just switch it back but I have a feeling that that isn't quite the way it
should be)
Click to expand...

When you try to debug from vs.net it is in fact authenticating to proove
that you're a windows user with the debug authorization. That's the
rationale for having both anonymous and windows authentication set in IIS.

Best thing to do imo is to keep windows authentication for debugging on
your dev or/and test machine, and deactivate it in your production machine.
 
Back
Top