Problem with front page site on secure site

TheMSsForum.com: The Microsoft Software Forum

2003 server/IIS 6 / Frontpage 2003

Hello all. I have 2 websites on a single server that point to the same
content directory. One is internal, port 80, anonymous authentication. The
other is SSL, 443, no anonymous, basic authentication only.

I have a front page form that simply sends the content to an email address.
It works fine for the internal site. On the external site, it works fine for
administrators, but ordinary users get prompted for credentials when they
hit the submit button. Only administrator credentials will allow them to hit
the submit button. I assume its is a permission thing somewhere, but I can't
find where. Some where the anonymous account must have more permissions than
the users group. The page you go to after submit is:
http:/...../_vti_bin/shtml.dll/useraccess.htm
I checked the NTFS permissions on the dll and the htm file, they look fine.
I'm not sure what else I can look for.

Any ideas?

Thanks,
Matthew
Top

Re: Problem with front page site on secure site by Spynwhanker

Spynwhanker
Thu May 04 10:01:42 CDT 2006

Are you using two virtual webs for this?

If so, try installing the FP extensions on the "outside" virtual web.

(FrontPage forms have a URL check that verifies that the form HTTP-referrer
is the same as the web and blocks if it is not the case.)

I am not sure what that will do to the FP extensions on the "inside" virtual
web, it may mess them up. You may want to back up the whole thing before
trying that.

"Matthew Kitchin (Usenet/Lists)" <mkitchin.public@gmail.com> wrote in
message news:uamyGtrbGHA.3352@TK2MSFTNGP03.phx.gbl...
> 2003 server/IIS 6 / Frontpage 2003
>
> Hello all. I have 2 websites on a single server that point to the same
> content directory. One is internal, port 80, anonymous authentication. The
> other is SSL, 443, no anonymous, basic authentication only.
>
> I have a front page form that simply sends the content to an email
> address. It works fine for the internal site. On the external site, it
> works fine for administrators, but ordinary users get prompted for
> credentials when they hit the submit button. Only administrator
> credentials will allow them to hit the submit button. I assume its is a
> permission thing somewhere, but I can't find where. Some where the
> anonymous account must have more permissions than the users group. The
> page you go to after submit is:
> http:/...../_vti_bin/shtml.dll/useraccess.htm
> I checked the NTFS permissions on the dll and the htm file, they look
> fine. I'm not sure what else I can look for.
>
> Any ideas?
>
> Thanks,
> Matthew
>


Top

Re: Problem with front page site on secure site by Matthew

Matthew
Thu May 04 10:49:51 CDT 2006

Yes. 2 virtual webs. I spent about 23 hours on the phone with Microsoft last
night. Their conclusion was that it is not supported to have 2 front page
extended virtual websites pointing to the same content directory.

"Funkadyleik Spynwhanker" <youreallywantoemailmepunk?@winblows.gov> wrote in
message news:445a16b6$1_2@newspeer2.tds.net...
> Are you using two virtual webs for this?
>
> If so, try installing the FP extensions on the "outside" virtual web.
>
> (FrontPage forms have a URL check that verifies that the form
> HTTP-referrer is the same as the web and blocks if it is not the case.)
>
> I am not sure what that will do to the FP extensions on the "inside"
> virtual web, it may mess them up. You may want to back up the whole thing
> before trying that.
>
> "Matthew Kitchin (Usenet/Lists)" <mkitchin.public@gmail.com> wrote in
> message news:uamyGtrbGHA.3352@TK2MSFTNGP03.phx.gbl...
>> 2003 server/IIS 6 / Frontpage 2003
>>
>> Hello all. I have 2 websites on a single server that point to the same
>> content directory. One is internal, port 80, anonymous authentication.
>> The other is SSL, 443, no anonymous, basic authentication only.
>>
>> I have a front page form that simply sends the content to an email
>> address. It works fine for the internal site. On the external site, it
>> works fine for administrators, but ordinary users get prompted for
>> credentials when they hit the submit button. Only administrator
>> credentials will allow them to hit the submit button. I assume its is a
>> permission thing somewhere, but I can't find where. Some where the
>> anonymous account must have more permissions than the users group. The
>> page you go to after submit is:
>> http:/...../_vti_bin/shtml.dll/useraccess.htm
>> I checked the NTFS permissions on the dll and the htm file, they look
>> fine. I'm not sure what else I can look for.
>>
>> Any ideas?
>>
>> Thanks,
>> Matthew
>>
>
>


Top

Re: Problem with front page site on secure site by Matthew

Matthew
Thu May 04 11:50:07 CDT 2006

Oops. 3 hours. Not 23 hours.

"Matthew Kitchin (Usenet/Lists)" <mkitchin.public@gmail.com> wrote in
message news:uqFNhJ5bGHA.4040@TK2MSFTNGP02.phx.gbl...
> Yes. 2 virtual webs. I spent about 23 hours on the phone with Microsoft
> last night. Their conclusion was that it is not supported to have 2 front
> page extended virtual websites pointing to the same content directory.
>
> "Funkadyleik Spynwhanker" <youreallywantoemailmepunk?@winblows.gov> wrote
> in message news:445a16b6$1_2@newspeer2.tds.net...
>> Are you using two virtual webs for this?
>>
>> If so, try installing the FP extensions on the "outside" virtual web.
>>
>> (FrontPage forms have a URL check that verifies that the form
>> HTTP-referrer is the same as the web and blocks if it is not the case.)
>>
>> I am not sure what that will do to the FP extensions on the "inside"
>> virtual web, it may mess them up. You may want to back up the whole
>> thing before trying that.
>>
>> "Matthew Kitchin (Usenet/Lists)" <mkitchin.public@gmail.com> wrote in
>> message news:uamyGtrbGHA.3352@TK2MSFTNGP03.phx.gbl...
>>> 2003 server/IIS 6 / Frontpage 2003
>>>
>>> Hello all. I have 2 websites on a single server that point to the same
>>> content directory. One is internal, port 80, anonymous authentication.
>>> The other is SSL, 443, no anonymous, basic authentication only.
>>>
>>> I have a front page form that simply sends the content to an email
>>> address. It works fine for the internal site. On the external site, it
>>> works fine for administrators, but ordinary users get prompted for
>>> credentials when they hit the submit button. Only administrator
>>> credentials will allow them to hit the submit button. I assume its is a
>>> permission thing somewhere, but I can't find where. Some where the
>>> anonymous account must have more permissions than the users group. The
>>> page you go to after submit is:
>>> http:/...../_vti_bin/shtml.dll/useraccess.htm
>>> I checked the NTFS permissions on the dll and the htm file, they look
>>> fine. I'm not sure what else I can look for.
>>>
>>> Any ideas?
>>>
>>> Thanks,
>>> Matthew
>>>
>>
>>
>
>


Top