错误http 错误 404 - 文件或目录未找到 http 错误 401.2 - 未经授权（HTTP Error 404 - file or directory failed to find HTTP error 401.2 - without authorization）

http错误404 -文件或目录未找到http错误401. 2 -未经授权

HTTP Error 404- file or directory failed to find HTTP error

401.2 - without authorization

HTTP Error 404 - file or directory failed to find HTTP error

401.2 - unauthorized: access due to server configurationrejected.

Problem 1: the parent path is not enabled

Symptomati c example:

Server.MapPath () error'ASP 0175: 80004005'

Path characters are not allowed

/0709/dqyllhsub/news/OpenDatabase.asp, line 4

The character ' . . ' not allowed in Path MapPath' s parameters.Reason analysis:

Many Web pages to use statements such as / format (i.e. to apage, that is, the father path) and IIS6.0 for security reasons,this option is off by default.

Resolvent

In the IIS home directory attributes - > - > configuration- >options. The "enable parent path" in front of tick. Confirmrefresh.

The Web extension for the problem 2:ASP is not configuredproperly (the same applies to ASP.NET, CGI)

Symptomati c example:

HTTP Error 404 - file or directory not found.

Reason analysis:

In IIS6.0, the new web program extends this option, where youcan allow or disable programs such as ASP, ASP.NET, CGI, IDC,etc. by default, ASP and other programs are prohibited.Resolvent

IntheWeb service extension in IIS, selectActiveServerPages,and click "allow"".

Problem 3: improper configuration of authentication

Symptomati c example:

HTTP error 401.2 - unauthorized: access denied due to serverconf igurat ion.

Reason analysis: IIS supports the following Web authenticationmethods:

Anonymous Authentication

IIS creates the IUSR_computer name account (where the computername is the name of the server running IIS) that is used toauthenticate the anonymous users when they request Web content.This account grants the user the local logon authority. You canreset anonymous user access to using any valid Windows account.Basic authentication

Using basic authentication can restrict access to files on aNTFS format Web server. With basic authentication, the usermust enter credentials, and access is basedonuser ID. The userID and password are sent between the networks in plain text.Windows integrated authentication

Windows integrated authentication is more secure than basicauthentication and works well in an intranet environment whereusers have Windows domain accounts. In integrated Windowsauthentication, the browser attempts to use the credentialsthat the current user uses in the domain login process andprompts the user to enter auser name and password if the attemptfails. If youuse integrated Windows authentication, the user' spassword will not be sent to the server. If the user logs into the local computer as a domain user, he does not have toauthenticate again when accessing the network computer in thisd oma i n.

Digest authentication

Authentication overcomes many shortcomings of basicauthentication. When using digest authentication, passwords

are not sent in plain text. In addition, you can use digestauthentication through proxy servers. Authentication uses achallenge / response mechanism (integrated with the Windowsauthentication mechanism) , where the password is sent inencrypted form.

.NET Passport authentication

Microsoft.NET Passport is a user authentication service thatallows single sign on security, allowingusers tobemore securewhen accessing.NET Passport enabled Web sites and services.Sites that enable.NET Passport authenticate users by the *.NETPassport central server. However, the central server does notauthorize or deny a particular user access to the various.NETenabled Passport sites.

Resolvent

Configure different authentication requirements (usuallyanonymous authentication, which is the authentication methodused by most sites) .

The authentication options configuration in the attribute - >Security > authentication and access control under IIS.Problem 4: IP restrictions on improper configuration

Symptomati c example:

HTTP error 403.6-no access: the client' s IP address is denied.

Reason analysis:

IIS provides a mechanism for IP limit, you can limit a: P cannot access the site through the configuration, or limit onlysome IP can access the site, and if the client is in the rangeof IP to stop you, or not in the scope of your permission, itwill appear error.

Resolvent

Enter the IIS attribute - > Security ->IP address and domainname restrictions. If you want to restrict access to certainIP addresses, you need to select authorization access, andclick Add to select the IP address that is not allowed.Conversely, you can only allow access to certain IP addresses.The problem 5:IUSR account is disabled

Symptomati c example:

HTTP error 401. 1 - unauthorized: access denied due to invalidcredentials.

Reason analysis:

The account name used by the user for anonymous access is theIUSR_machine name, so if the account is disabled, the user willnot be able to access it.

Terms of settlement

Control panel - > > > management tool of computer managementfor local users and groups, will enable IUSR_machine accountn ame.

Problem 6:NTFS bad permission settings

Symptomati c example:

HTTP error 401. 3-unauthorized: access denied due to ACL' s setof requested resources.

Reason analysis:

The user of the Web client is part of the user group, so if theNTFS permissions of the file are insufficient (for example, noread permissions) , the page cannot be accessed.

Terms of settlement

Enter the security tab of this folder, configure thepermissions for user, or at least read permissions. About theNTFS permissions settings, no more here.

Problem 7: IWAM account is out of sync

Symptomati c example:

HTTP 500 - internal server error

Reason analysis:

The IWAM account is a built-in account automatically createdbythe systemwhenthe IIS is installed. After the establishmentof Active Directory IWAM account, IIS metabase database andCOM+ application of three party in common use, the accountpassword is three were saved, synchronization and by theoperating system is responsible for the preservation of thethree party IWAM password. System password synchronization onthe IWAM account sometimes fails, resulting in IWAM accountpassword is not uniform.

Terms of settlement

If there is a AD, select Start > programs > management tool->Active Directory users and computers. Set the password forthe IWAM account.

Run the c:\\Inetpub\\AdminScripts>adsutil SETw3svc/WAMUserPass + password to synchronize the IIS metabasedatabase password

Run cscript c:\\inetpub\\adminscripts\\synciwam.vbs -v tosynchronize the password of the IWAM account in the COM+application

The problem 8:MIME setup problem causes some types of files tonot be downloaded (as ISO)

Symptomati c example:

HTTP Error 404 - file or directory not found.

Reason analysis:

IIS6.0 canceled support for certain MIME types, such as ISO,which caused the client to download errors.

Resolvent

The new->HTTP ->MIME type attribute head - > in IIS. In thefollowing dialogbox, the extension is filledwith. ISO, and theMIME type is application.

In addition, firewall blocking, ODBC configuration errors, Webserver performance restrictions, thread restrictions and otherfactors are also the possible reasons for the IIS server' sfailure to access and are no longer mentioned here.