I worked with a customer recently who needed to set up an HTTP redirection using the Error Pages in IIS 7.5. After setting up a custom error page with a static resource for an HTTP 401.1 error code, the redirection still showed the default IIS 401.1 page. We had to work to determine the cause
This article points to resources showing how to redirect HTTP to HTTPS on Microsoft IIS 7 and 7.5. We are often asked how to redirect non-secure HTTP requests to secure requests on HTTPS using SSL. You can redirect HTTP requests to secure HTTPS request over SSL using the URL Rewrite module in IIS 7 and 7.5. At
I recently was working on a customer implementation of our PeopleProvision solution and I needed to create a new Exchange mailbox for new user accounts in Active Directory. Our customer uses Exchange 2007 and, after installing the Exchange Management Shell that includes PowerShell cmdlets used to create mailboxes, the system seemed ready to go. I kept
We officially launched our Microsoft IISADMPWD Replacement Tool today. Our simple solution addresses several issues with previous versions of IISADMPWD and allows you to delegate Windows password changes for web applications running on IIS 7 and later. The new solution provides lots of value to allow users to self manage passwords. You can get more
Sometimes you need very precise control over the HTTP error responses returned by IIS 7. IIS 7 provides methods to hook into the response stream in the integrated pipeline and many IIS 7 settings are actually contained in configuration files like Web.config and machine.config. If you have custom text you want to return for an
In yesterday’s post we looked at an issue with the IIS 7 architecture where Windows and Basic authentication fail when the “User must change password at next logon” flag is set for an Active Directory user. Microsoft engineered IIS 7 to deny access to users who have this flag set. This change from previous versions of
Many organizations have employed Microsoft’s IISADMPWD tool to allow password changes in Active Directory for web applications. Originally intended as the way to change passwords for access in Outlook Web Access (OWA), IISADMPWD became quite a useful solution for any organization that wanted to delegate access to Active Directory password changes via a web application.
When writing web applications, you often must grant permissions to an application to do something on other machines in a Windows domain or forest. IIS 6, 7 and 7.5 all allow you to configure IIS application pools to run under specific, rather secure identities like NETWORK SERVICE and the Application Pool Identity. When accessing resources
We have a customer that hosts one of our web applications on Windows Server 2003/IIS 6. During a support session recently, I noticed that the customer has a unique setup that I had not seen before. To preserve legacy URLs, the customer deploys this application as a virtual directory under the IIS Default Web Site.