We have to servers that sync using sync-wdserver, this has worked fine up until now.  Recently we got an SSL certificate for a site hosted on those servers, it was initially installed via iis 8 on both servers however it was later removed and the SSL installed on the load balancer instead.  Since this occurred, the two servers are unable to sync in the regular fashion, the following error occurs on the slave:

User:
Client IP: private ip here
Content-Type: application/msdeploy
Version: 9.0.0.0
MSDeploy.VersionMin: 7.1.600.0
MSDeploy.VersionMax: 9.0.1955.0
MSDeploy.Method: Sync
MSDeploy.RequestId: 8f1de4f4-9d33-41b1-abd2-045c2907f894
MSDeploy.RequestCulture: en-US
MSDeploy.RequestUICulture: en-US
ServerVersion: 9.0.1763.0
Skip: objectName="^configProtectedData$"
Provider: webServer, Path:
A tracing deployment agent exception occurred that was propagated to the client. Request ID '8f1de4f4-9d33-41b1-abd2-045c2907f894'. Request Timestamp: '3/31/2017 12:18:20 PM'. Error Details:
System.Runtime.InteropServices.COMException (0x80070520): A specified logon session does not exist. It may already have been terminated. (Exception from HRESULT: 0x80070520)
at Microsoft.Web.Deployment.AxNative.NativeMethods.HttpSetSslConfiguration(String binding, String hash, String appId, String storeName, Int32 certCheckMode, Int32 freshnessTime, Int32 urlRetrievalTimeout, String ctlIdentifier, String ctlStoreName, Int32 flags)
at Microsoft.Web.Deployment.HttpCertCommitableItem.ApplyConfiguration()
at Microsoft.Web.Deployment.HttpCertCommitableItem.CommitChanges(DeploymentCommitContext commitContext)
at Microsoft.Web.Deployment.DeploymentCommitContext.CommitChanges(DeploymentSyncOptions syncOptions, DeploymentBaseContext baseContext)
at Microsoft.Web.Deployment.DeploymentObject.SyncToInternal(DeploymentObject destObject, DeploymentSyncOptions syncOptions, PayloadTable payloadTable, ContentRootTable contentRootTable, Nullable`1 syncPassId, String syncSessionId)
at Microsoft.Web.Deployment.DeploymentAgent.HandleSync(DeploymentAgentAsyncData asyncData, Nullable`1 passId)
at Microsoft.Web.Deployment.DeploymentAgent.HandleRequestWorker(DeploymentAgentAsyncData asyncData)
at Microsoft.Web.Deployment.DeploymentAgent.HandleRequest(DeploymentAgentAsyncData asyncData)

It seems some broken certificate somewhere is causing an issue, when I run the sync-wdserver from powershell on the master I notice the following warning before the logon error above also appears below this warning:

WARNNING: skipping source cert ("some hash appears here") because of rule skipinvalidsource. No certificate found in store My with has "same hash as above"

I assume the issue is related to the SSL certificates that were installed and removed, somewhere an issue has been caused.  Can anyone clarify what the problem is and if possible how to resolve it so we are able to sync the servers successfully again?

Hi to all

I have one Windows 2012 R2 with IIS 8.5 role configured.  Server have some strange crashes of w3logsvc, the point of crashes is that we have added X-forwarded-For header and after it, every day at 04:00 AM on Baku time (+4 hour) service crashed. I have analyzed dump file and there is some information about crash.

EXCEPTION_CODE_STR:  c00000fd  this point to "A new guard page for the stack cannot be created."

The last lines in stack text was this:

ntdll!RtlpLowFragHeapAllocFromContext+0x4b

ntdll!RtlAllocateHeap+0xe2

ntdll!RtlDosPathNameToRelativeNtPathName+0x1c5

ntdll!RtlDosPathNameToRelativeNtPathName_U+0x4f

KERNELBASE!CreateDirectoryW+0x31
w3logsvc!LOG_WRITER::Flush+0x3d
w3logsvc!LOG_WRITER::GetLogFileHandle+0x2c7

And of course crashed module was "w3logsvc"

Need to say that after deleting newly added header no crashes was detected, even right after crash I don't able to start service, only after deleting Header or restart IIS, service work again. At first I think that problem is in file rotation, but log files rotating time is at 12:00 am local time. I will turn off rotation for today and on the tomorrow morning we will have new information. Now if anybody faced with this kind of problem or have any opinion be free to wright it.

P.S

The code from Event Viewer

Faulting application name: svchost.exe_w3logsvc, version: 6.3.9600.16384, time stamp: 0x5215dfe3
Faulting module name: ntdll.dll, version: 6.3.9600.16502, time stamp: 0x52c359e8
Exception code: 0xc00000fd
Fault offset: 0x0000000000042395
Faulting process id: 0xb248
Faulting application start time: 0x01d2a81f6f604cc0
Faulting application path: C:\Windows\system32\svchost.exe
Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report Id: 532bb163-14dc-11e7-80be-f69f7a609187
Faulting package full name: 
Faulting package-relative application ID: 

Hi all,

i'm an italian man (and sorry for my english) and i have a question about one thing and i think the problem is on IIS.

I have changed workstation and reinstalled Windows 10 Pro and all services (iis, etc).. before this change, IIS worked fine and have no problem, but now when i display a currency (with an simple asp page like **response.write(formatcurrency("10"))** ), i have the symbol Euro on the right and not on the left... i don't understand why !!?

I have also tried to uninstall and reinstall iis but i don't have solved.

Someone can help me ?

Many thanks

I originally posted this over on Reddit but got no feedback, so crossposting here.

I'm trying to determine if there's a way I can programmatically authenticate a user's session.

The user will browse to a page (hosted in IIS 7.5, if it matters). The site will be configured with anonymous access and basic authentication both enabled in IIS.

When the user gets to the page, as far as IIS/ASP is concerned, they're anonymous and aren't logged in.

On this page, I want to display a sign-in form where the user enters their e-mail address / AD password, then validate the supplied credentials against Active Directory, and if valid I want to somehow convert their session from anonymous to instead be authenticated as their AD account such that request.serverVariables("auth_user") would return their AD account.

I have the AD validation working, but I can't figure out how I can convert their session from anonymous to authenticated.

At present, I have anonymous access disabled in IIS so when users visit the site they get a windows login dialog. This works fine, but for some reason our employees can't seem to remember their usernames so I want to make a friendlier login page for them.

I'm essentially trying to roll my own forms authentication for functionality similar to what you get out of the box with ASP.net. I know that it's possible to integrate classic ASP code with .NET FBA, but I'm trying to implement my own FBA without using any .NET functionality, mainly just to see if I can because I have a lot of classic ASP code and to me I'd rather have a 100% ASP solution (personal preference).

Any suggestions on how I might approach this?

Googling turns up mostly stuff about how to authenticate users against a table in SQL server, etc. I can't seem to find the right search terms to get info on what I'm trying to accomplish.

EDIT: After validating AD credentials, I've tried doing a response.redirect to https://user:pass@host/script.asp, and that works as far as the page loading, but auth_user is still null. So it appears that even though the browser has the user's credentials, since anonymous access is enabled in IIS, that's taking precedence over basic authentication and is preventing the session from authenticating. After trying this, I disabled anonymous access in IIS and refreshed the page and auth_user was populated as expected. So, it seems like since anonymous access is enabled, IIS isn't challenging the browser for authentication so the browser isn't sending the credentials it has.

Hello all,

I am currently trying to use the dbDacFx provider to deploy a dacpac to a remote sequel server. However, when I do this, I get an ERROR_SCRIPTDOM_NEEDED_FOR_SQL_PROVIDER. I am doing this via command prompt.

This error, thankfully, gave me a link which showed the dependencies I would have to install. So I went ahead and installed all the ones which weren't already installed and attempted to run the command again but ended up with the same error.

I tried uninstalling web deploy and all the dependencies and then used Web Platform Installer to install web deploy. This also installed all required dependencies. No change. I did this for both my desktop and the remote server.

This is the command I am running. I am often using msdeploy to deploy .zip packages to this server, so I know my connection is fine.

msdeploy.exe -verb:sync -source:dbDacFx='C:\Users\tsyme\Documents\int_testing\.build\New folder\Database.dacpac' -dest:dbDacFx='Data Source=localhost;Initial Catalog=SkyWirePOS;Integrated Security=true',computername='https://ServerIpHere:8172/msdeploy.axd',username='InsertAdminHere',password='InsertPassHere',authType=Basic -allowUntrusted -enableRule:DoNotDeleteRule

Thanks, would appreciate any feedback 

I am running Windows 10 Pro IIS (V10.0.14933.0) on my PC.

I install via Web platform > Wordpress and the associated PHP, SQL etc..

I Start http://localhost/Wordpress/index.php the next error

HTTP Error 500.21 - Internal Server Error

Handler "PHP55_via_FastCGI" has a bad module "FastCgiModule" in its module list

Most likely causes:

<div class="content-container">

• Managed handler is used; however, ASP.NET is not installed or is not installed completely.
• There is a typographical error in the configuration for the handler module list.
• During application initialization, either the application initialization feature has set skipManagedModules to true, or a rewrite rule is setting a URL that maps to a managed handler and is also setting SKIP_MANAGED_MODULES=1.

</div>

I really don't know how to solve this problem

QST I need help can somebody advice my how to solve this problem..

Thanks Rob73

There was an old thread here on this forum:

https://forums.iis.net/t/1180650.aspx

In this thread, user "LLoydz" described a way to turn off some of the IIS Express logging by using this command line:

appcmd.exe set config -section:system.webServer/modules /-"[name='HttpLoggingModule']" /commit:apphost

This worked the way it was intended to stop the logging, but now I want to turn the logging back on, and I'm not sure how to do it. Does anyone know what the reverse of the above ommand would be?

It seems like it removes an entire section of the config, but now I'm not sure how to put the config back the way it was before.

Anyone know?

anyone try applying this fix from MS?

https://support.microsoft.com/en-us/help/3154520/support-for-tls-system-default-versions-included-in-the-.net-framework-3.5-on-windows-8.1-and-windows-server-2012-r2

Any issues? and how any I tell what operating system defaults for SSL and TLS are?

changing the dependency on TLS will not change what ciphers it will use?

  i dosent  want .aspx hiding rule for some directories like payment  and client login.

please help me to write a rule.

My current web.config code:

<rewrite>
<rules>
<rule name="Hideing .aspx">
<match url="^(.*)$" />
<conditions>
<add input="{REQUEST_FILENAME}.aspx" matchType="IsFile"/>
</conditions>
<action type="Rewrite" url="{R:0}.aspx" />
</rule>
<rule name="redireting the.aspx ext" stopProcessing="true">
<match url="^(.*).aspx$" />
<conditions>
<add input="{URL}" pattern="(.*).aspx$" />
</conditions>
<action type="Redirect" url="{R:1}" />
</rule>

</rules>
</rewrite>

Hi,

I tried to setup  a web site in IIS, it has some .js files in the script folder. When I browse the site directly from the local IIS server, the content display without any problem in IE

When I load that exact same page, but from another computer, the content doesn't display in IE for the parts that call the .js file.  The content display fine, when I use Chrome, however, it said it is not secure at the top beside the address bar.

I tried another page which just displays an image, it works perfectly fine in IE and Chrome

So, I tried runas the admin account of that IIS server in IE, the content display all fine. 

Seems like it has something to do with the permission. But when I check the website's permission, the IIS User has execute and read permission.

Please advise, your help would be greatly appreciated!

I have this same URL rewrite setup on a non-default site to redirect all http to https and it works on all the 2012R2 servers, but on the 2016 server when usinghttp://siteX, the user gets http://DefaultIISWebsite, rather than https://siteX

Here is the code:

<rewrite>

            <rules>

                <rule name="HTTP to HTTPS Redirect" enabled="true" stopProcessing="true">

                    <match url="(.*)" />

                    <conditions>

                        <add input="{HTTPS}" pattern="off" />

                    </conditions>

                    <action type="Redirect" url="https://{HTTP_HOST}/{R:1}" redirectType="Found" />

                </rule>

            </rules>

        </rewrite>

I add a website w1 in IIS, it didn't work as expected, so I copy the content of a working site w2 to w1.  I probably use w2's host (w2.mycompany.com) for w1. All works fine. So, I replaced the w1 files with the original files and use w1.mycompany.com for w1 again. However, when I browse the site, it is just as if I am browsing w2. I reset IIS, delete w1, the app pool of w1. Nothing works.

Is there anything else I should clear and reset?

Thanks in advance. Your help would be greatly appreciate!

when i use msdeploy package a website, i found that some file name Garbled.

C:\WINDOWS\system32>msdeploy -verb:sync -source:apphostconfig="Default Web Site" -dest:package="C:\Users\James.H.Fu\test-webdeploy\site1.zip"

I am running Windows 10 Pro IIS (V10.0.14933.0) on my PC.

I install via Web platform > Wordpress and the associated PHP, SQL etc..

I Start http://localhost/Wordpress/index.php the next error

HTTP Error 500.0 - Internal Server Error

File monitoring is enabled for a file which could not be found

Detailed Error Information:

<div id="details-left">

</div>

Can somebody help me out?

Thx Rob73

HI

I have a webapp called APP1, this application is connected to database server, database1
while doing some test on the application, I notice that if I change the web.config and write a wonge connection string DB Server name, the application is returning the excption error that is 

System.Data.SqlClient.SqlException (0x80131904): A network-related or instance.... which is fine, but I dont know why the return HTTP code is 200

how can i change this behavior, what I need is when database error, any error code should return like 500, 503.
the main problem is my Kemp load balancer is unable to know that this APP is healthy or not.

Any idea 

;-p

On my sql server database, i do have a table, inside the table i do have a columns named 'SQL_HOST' - default binding value was host_name() & 'SQL_ USER' - suser_sname().

The problem is how to deploy web app that is windows authenticated that if i save something on my web app it will be auto saving the SQL_HOST AND SQL_USER but as of now i was getting an error on user authentication pass-through that saying cannat verify access to the path.

Thank you 

Hello,

We have two windows 2012 servers running iis 8, they are setup to sync using the appropriate webdeploy powershell cmdlet as shown on this page in the sync section:

https://www.iis.net/learn/publish/using-web-deploy/web-deploy-powershell-cmdlets 

Unfortunately when the syncing takes place there appears to be the following error multiple times:

WARNNING: skipping source cert ("sequence of letters and numbers appear here") because of rule skipinvalidsource. No certificate found in store My with has "same sequence of letters and numbers"

followed by:

Sync-WDServer: An error occurred when the request was processed on the remote computer. A specified logon session does not exist. It may already have been terminated (Exception from HRESULT: 0x80070520)

We have two other servers hosted elsewhere which have the same setup and it runs perfectly.  Recently there were SSL certificates installed and removed for certain sites on the two servers with the problem, possibly that has caused some sort of issue with another certificate that is required for the syncing to work?

I personally have no experience of this and don't understand it at all.  It seems like a certificate that existed and allowed the two servers to sync in this manner has now gone, does anyone know how we can fix this issue and allow the servers to sync again?

We have to servers that sync using sync-wdserver, this has worked fine up until now.  Recently we got an SSL certificate for a site hosted on those servers, it was initially installed via iis 8 on both servers however it was later removed and the SSL installed on the load balancer instead.  Since this occurred, the two servers are unable to sync in the regular fashion, the following error occurs on the slave:

User:
Client IP: private ip here
Content-Type: application/msdeploy
Version: 9.0.0.0
MSDeploy.VersionMin: 7.1.600.0
MSDeploy.VersionMax: 9.0.1955.0
MSDeploy.Method: Sync
MSDeploy.RequestId: 8f1de4f4-9d33-41b1-abd2-045c2907f894
MSDeploy.RequestCulture: en-US
MSDeploy.RequestUICulture: en-US
ServerVersion: 9.0.1763.0
Skip: objectName="^configProtectedData$"
Provider: webServer, Path:
A tracing deployment agent exception occurred that was propagated to the client. Request ID '8f1de4f4-9d33-41b1-abd2-045c2907f894'. Request Timestamp: '3/31/2017 12:18:20 PM'. Error Details:
System.Runtime.InteropServices.COMException (0x80070520): A specified logon session does not exist. It may already have been terminated. (Exception from HRESULT: 0x80070520)
at Microsoft.Web.Deployment.AxNative.NativeMethods.HttpSetSslConfiguration(String binding, String hash, String appId, String storeName, Int32 certCheckMode, Int32 freshnessTime, Int32 urlRetrievalTimeout, String ctlIdentifier, String ctlStoreName, Int32 flags)
at Microsoft.Web.Deployment.HttpCertCommitableItem.ApplyConfiguration()
at Microsoft.Web.Deployment.HttpCertCommitableItem.CommitChanges(DeploymentCommitContext commitContext)
at Microsoft.Web.Deployment.DeploymentCommitContext.CommitChanges(DeploymentSyncOptions syncOptions, DeploymentBaseContext baseContext)
at Microsoft.Web.Deployment.DeploymentObject.SyncToInternal(DeploymentObject destObject, DeploymentSyncOptions syncOptions, PayloadTable payloadTable, ContentRootTable contentRootTable, Nullable`1 syncPassId, String syncSessionId)
at Microsoft.Web.Deployment.DeploymentAgent.HandleSync(DeploymentAgentAsyncData asyncData, Nullable`1 passId)
at Microsoft.Web.Deployment.DeploymentAgent.HandleRequestWorker(DeploymentAgentAsyncData asyncData)
at Microsoft.Web.Deployment.DeploymentAgent.HandleRequest(DeploymentAgentAsyncData asyncData)

It seems some broken certificate somewhere is causing an issue, when I run the sync-wdserver from powershell on the master I notice the following warning before the logon error above also appears below this warning:

WARNNING: skipping source cert ("some hash appears here") because of rule skipinvalidsource. No certificate found in store My with has "same hash as above"

I assume the issue is related to the SSL certificates that were installed and removed, somewhere an issue has been caused.  Can anyone clarify what the problem is and if possible how to resolve it so we are able to sync the servers successfully again?