我正在将一些网站迁移到运行IIS6的新的Windows 2003安装过程中。但是我遇到了表单身份验证的问题。有问题的网站在旧版盒子上运行良好,这是相同的操作系统和IIS版本。请求的URL授权失败
当我尝试登录到该网站,我得到一个事件日志“URL授权失败的请求”和页面重定向到: -
http://www.demo.socialclause.net/logout.aspx?ReturnUrl=/Secure/Procurement/Default.aspx
无论是新老服务器包含相同的设置和相同的权限。很明显,我错过了一个设置,但无法理解。谁能帮忙?
我的web.config包含此: -
<authentication mode="Forms">
<forms slidingExpiration="true" name=".ASPXAUTH" protection="All" loginUrl="~/logout.aspx" timeout="60" ></forms>
</authentication>
和/安全目录内(这不是一个虚拟目录)我的web.config包括: -
<?xml version="1.0"?>
<configuration>
<system.web>
<authorization>
<allow roles="ClauseAdmin"/>
<allow roles="ProcurementAdmin"/>
<allow roles="ReportAdmin"/>
<allow roles="SystemAdmin"/>
<deny users="*"/>
</authorization>
</system.web>
</configuration>
事件日志显示:
Event Type: Information
Event Source: ASP.NET 2.0.50727.0
Event Category: Web Event
Event ID: 1314
Date: 26/05/2009
Time: 21:01:05
User: N/A
Computer: WILDEAA1
Description:
Event code: 4007
Event message: URL authorization failed for the request.
Event time: 26/05/2009 21:01:05
Event time (UTC): 26/05/2009 20:01:05
Event ID: af3bac34e6d74630b937a5a05d0f25f2
Event sequence: 4
Event occurrence: 1
Event detail code: 0
Application information:
Application domain: /LM/W3SVC/2067908276/Root-1-128878416581538912
Trust level: Full
Application Virtual Path:/
Application Path: C:\Inetpub\websites\www.demo.socialclause.net\htdocs\
Machine name: WILDEAA1
Process information:
Process ID: 1076
Process name: w3wp.exe
Account name: NT AUTHORITY\NETWORK SERVICE
Request information:
Request URL: http://demo.socialclause.net/Secure/Procurement/Default.aspx
Request path: /Secure/Procurement/Default.aspx
User host address: 91.84.25.241
User: [email protected]
Is authenticated: True
Authentication Type: Forms
Thread account name: NT AUTHORITY\NETWORK SERVICE
角色在数据库中定义并在用户登录时被拉出。该站点在旧盒子上工作。我认为这与权限甚至全球政策有关,但我似乎无法找到答案。 – Rippo 2009-05-27 07:07:01
尽管如此,该语言意味着'URL授权'问题。我怀疑你的SSL或服务器证书可能没有正确设置。 – SpliFF 2009-05-27 07:40:06