IIS - directory security settings not saved

[jrwinterburn]

Hi Guys,

I have a weird problem with IIS (6.0) on Server 2003 (SP1).

I have a default web site running with several virtual directories that have anonymous access enabled.

However, I would like to restrict access to the default web site based upon IP - all IP's should be blocked, except for 3 that I have specified.

When I set this up and test it, it works; a client which IP is not in the granted list gets a "forbidden" error.

Great - until I restart IIS or restart the server. Upon either restart, all changes I have made to the directory security have been stripped out! I have tried this 3 times to no avail. I am logged on as administrator with all relevant rights.

Any ideas? I have not seen this happen before...

Thanks,

Jon

 

[jrwinterburn]

I fixed the problem, so no need for help after all.

Basically, the problem exists if you specify the anonymous user to be a domain user (i.e. domain\user), then any changes to directory security you make will not be saved after restart of IIS 6.0.

Having changed this to IUASR_PCNAME, any changes that are made are saved.

Out of interest, does anyone know if this is be design, or a bug?

Thanks.

Jon