How to check which permission your assembly requires using Permcalc.exe

I was working on a case recently where the customer was a hosting service provider and his client’s hosted application was showing a server error. Specifically the error was thrown due to a security exception. Security Exception Description: The application attempted to perform an operation not allowed by the security policy. To grant this application…


Sample test .aspx page to display User Security Principal and Name

Hi Folks, For a case recently I was required to provide a quick sample script to display the logged in user security principal which I have attached to this post. I hope you will also find it useful. My colleagues from the French team has also posted a similar post on this: Thanks, Rez…


Custom Error pages in IIS 7/7.5

Today I thought I would walk through how to enable custom error pages in IIS 7/7.5. Custom error pages allow you to specify the content that you want to display to users when a specific HTTP error code is received. Its a powerful technique empowering users to be aware of what has happened that caused…


Cannot read configuration file because it exceeds the maximum file size (web.config)

I recently came across an interesting case, where the customer was in the process of migrating their content over to a new build of IIS 7.5. All was going well till they hit an issue when migrating their 1MB web.config file, where they received an error “cannot read configuration file because it exceeds the maximum…


Shared Session State in a IIS6 and IIS7 Web Farm

It is not an uncommon scenario to have a web farm of servers sitting behind a load balancer. In fact that is the only way you can achieve high availability so it is recommended.One issue that arises when this setup is used is when the user session needs to be persisted across all the servers. …


Using Web Farm Framework behind a Proxy

We have seen quite a few instances where users are setting up a web farm using Web Farm Framework (WFF) behind a proxy. As WFF relies on getting the products from the internet through Web Platform Installer, and provisioning will fail if it can’t reach the outside world, so your proxy settings need to be passed…


Configure IIS FTP User Isolation using an IIS Managed User Account

FTP 7.5 has a feature that allows you to create a managed user account without requiring you to add a domain user. This user can be used as part of FTP access and also allow user isolation among directories.The purpose of this blog is to show you the steps of how to achieve this with…


How to digitally sign a strong named assembly

The following blog post demonstrates how to use a self-signed digital certificate to sign a strong named assembly. Strong names guarantee name uniqueness by relying on unique keypairs. No one can generate the same assembly name that you can, because anassembly generated with one private key has a different name than an assemblygenerated with another…


FTP service gets deleted on server restart

If a registry DWORD “DeleteFlag” is set to 00000001 for the FTP service (or any service ) on IIS6 server at [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MSFtpsvc] the service will be deleted on server restart. While this may be by design in cases when the service is uninstalled, but in such cases the service node has to be deleted from registry….


Issues when using delegation with client certificate mapping on IIS 7.0

Recently I came across an issue that I would like to share with everyone. We had a .net 3.5 web service hosted on IIS 7.0. We have configured it to accept a client certificate with a 1-to-1 mapping to a domain account. When presented with the cert the service appears to run as the account…