I am looking for anybody who may have set up their web server
I need to have Anonymous Authentication turned off - reason
being - we user the User_id in the CGI variable to show their name
and for security. This part is already working fine.
Now I am adding Scheduled Tasks into the mix, but whenever I
try it I get the following error:
HTTP Error 401.2 - Unauthorized: Access is denied due to
server configuration.<br>Internet Information Services (IIS)
I am investigating all web sites possible for an answer, but
hopefully someone here might have an idea.
Now then, the CF service is using the local system account,
and it doesn't have access to the web site.
When I try to add Everyone, it still doesn't work.
IIS security is very fine grained. You can apply security
global as the entire website or as granular as an individual
When I have been presented with the exact issue you are
having anonymous access for scheduled tasks, I would set up a
directory for the scheduled tasks and allow anonymous access
that file or directory, while leaving the rest of the site
You can use other filters to prevent unlimited access to
these files if
that is necessary. Such as restricting the IP address for
to just the CF server, or similar restrictions.
You can not set any user for ColdFusion that will pass IIS
security. The reason for this is that for IIS integrated
browser must understand the protocol and respond correctly.
browser that does this is IE. Any other browser, including
basic browser CF uses to make a scheduled task request, do
understand this protocol. They will either present a dialog
box for a
user name and password or just fail completely upon making
If you can accept IIS basic security, you can use the user
password fields on the scheduled task form to provide these.
aware that these creditionals are passed between client and
open, plain text and can be snooped. The usual mitigation for
using HTTPS or another security protocol to encrypt data in