Phcrypto v+ 2012-08-05 16:59:36
We are experiencing sporadic
( HTTP Error 401.1 Unauthorized: Access is denied due to invalid credentials. )
I ll attempt to set the ground work so you can get a better idea as to how we re setup
We have developed an ISAPI filter that subscribes to
SF_NOTIFY_SECURE_PORT | SF_NOTIFY_NONSECURE_PORT |
SF_NOTIFY_PREPROC_HEADERS | SF_NOTIFY_AUTHENTICATION |
SF_NOTIFY_AUTH_COMPLETE | SF_NOTIFY_URL_MAP |
SF_NOTIFY_LOG | SF_NOTIFY_END_OF_NET_SESSION |
SF_NOTIFY_ACCESS_DENIED | SF_NOTIFY_END_OF_REQUEST |
If the incoming request passes specific conditions set in OnUrlMap(), I re-direct the request to another web server and return SF_STATUS_REQ_NEXT_NOTIFICATION .
Essentially, that s all the ISAPI filter does with respect to user access of URIs on this IIS
All methods return SF_STATUS_REQ_NEXT_NOTIFICATION
All web sites on our IIS allow anonymous access to all URIs based on the default PUBLIC settings and Anonymous User access. No other security setting is in place.
Here s an example of what actually happens.
I restart iisadmin and w3svc
Access to all URIs on all web sites work fine
Various web sites are hit during the course of the day
Suddenly, and at least twice in one working day, we hit the HTTP Error 401.1 on different web sites in IIS
The IIS log files report the requests but don t reveal any other information
No changes seem to be apparent in the IIS Snap-in. The metabase properties seem unchanged. The ISAPI filter reports that conditions do not warrant a redirect for any of the last set of requests. No changes seem apparent in the virtual directory/file ACEs
Yet, users are returned HTTP Error 401.1 for various web sites, and their virtual directory/files, etc
Any idea as to what is going on or what I ve missed