ASP.NET应用程序页面无法正常工作的客户端的计算机 [英] ASP.NET Application page not working on clients computers
问题描述
我们developped运行我们的开发服务器上,并在我们的网络计算机优良的ASP.NET应用程序。但是,在生产,直接从Web服务器访问它时,而不是在客户端(code后面没有执行)。
应用程序工作任何提示?
TY
框架是3.5
直接从Web服务器访问时,而不是在客户端(code后面不执行)的应用程序工作。
这听起来像一个安全权限问题。
检查是否安装了网站,在那里。 C:\\的Inetpub \\ wwwroot的默认拥有适当的执行权限。出于安全原因,许多企业喜欢来设置网站有在其他地方[1]安装的政策。当默认文件夹之外设立网站,增加了阅读与安培;执行,读取和列出文件夹目录权限IIS_WPG,IWAM_server_name,IUSR_server_name和ASPNET帐户。有时网络服务需要被添加到集合中。
当您运行在本地登录,应用程序在用户的凭据登录运行。当远程打击的网站,应用程序正在尝试在身份验证对话框showned的帐户运行(在IIS管理器中,右键单击网站/应用程序,然后属性,然后目录安全性选项卡,然后点击验证编辑和访问控制位。通常情况下,启用匿名访问点击和用户名是IUSR_server_name。
注:结果
1 - 所以,当一些黑客上传malevolant code到C:\\的Inetpub \\ wwwroot文件中,code不做任何事情,因为网站不存在。we developped an ASP.NET application that runs fine on our development server and in our network computers. But in production, the application works when accessing it directly from the web server but not on the clients (code behind is not executing).
Any hints?
TY
Framework is 3.5
解决方案the application works when accessing it directly from the web server but not on the clients (code behind is not executing).
This sounds like a security permissions issue.
Check to see where the website is installed. C:\inetpub\wwwroot has the proper execute permissions by default. For security reasons, many corporations like to set a policy that websites have to be installed elsewhere [1]. When setting up websites outside of the default folder, add "read & execute", "read" and "list folder contents" permissions to IIS_WPG, IWAM_server_name, IUSR_server_name and ASPNET accounts. Sometime NETWORK SERVICE needs to be added to the collection.
When you run logged in locally, the application is running with the logged in user's credentials. When hitting the website remotely, the application is trying to run with the account showned in the Authentications dialog (in IIS manager, right click the web site/application, then properties, then directory security tab, then click "edit" on the "authentication and access control" bit. Usually, "enable anonymous access" is clicked and the "user name" is IUSR_server_name.
Notes:
1 - So that when some hacker uploads malevolant code to C:\inetpub\wwwroot, the code does nothing because the websites aren't there.这篇关于ASP.NET应用程序页面无法正常工作的客户端的计算机的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
