Microsoft KB Archive/315579

= &quot;HTTP Error 403&quot; Error Message When Password Changed with OWA or Iisadmpwd =

Article ID: 315579

Article Last Modified on 11/21/2006

-

APPLIES TO


 * Microsoft Internet Information Server 4.0
 * Microsoft Internet Information Services 5.0

-



This article was previously published under Q315579



We strongly recommend that all users upgrade to Microsoft Internet Information Services (IIS) version 6.0 running on Microsoft Windows Server 2003. IIS 6.0 significantly increases Web infrastructure security. For more information about IIS security-related topics, visit the following Microsoft Web site:

http://www.microsoft.com/technet/security/prodtech/IIS.mspx



SYMPTOMS
When you attempt to change a password in Outlook Web Access (OWA) or browse one of the .htr files directly, or if you try to execute a Common Gateway Interface (CGI), Internet Server Application Programming Interface (ISAPI), or other executable program from a directory that does not allow programs to be executed, you may receive the following error message in the Web browser:

HTTP Error 403

403.1 Forbidden: Execute Access Forbidden



CAUSE
The Iisadmpwd virtual directory in the Internet Service Manager does not have script permissions.



RESOLUTION
To resolve this problem, follow these steps:
 * 1) Open the Internet Service Manager Microsoft Management Console (MMC).
 * 2) Right-click the Iisadmpwd virtual directory and then click Properties.
 * 3) On the Virtual Directory tab, change the permissions from none to script.

NOTE: By default, IISADMPWD is installed as a physical folder under Microsoft Windows 2000, but not as a virtual directory under Internet Information Services (IIS) version 5.0. Because of this, IIS does not recognize that the directory exists. If the problem persists, contact the administrator of the Web server.



MORE INFORMATION
IIS 4.0 includes the capability that allows a Microsoft Windows NT 4.0 user to change passwords and to receive notification when a password is about to expire. IIS installs this functionality in the IISADMPWD virtual directory of the default Web site. This feature is implemented as a set of .htr files that are located in the %system%\System32\Inetsrv\Iisadmpwd directory and the ISAPI Ism.dll extension file.

For more information about how to configure IIS to support password changes, view the &quot;Notifying Clients of Password Status&quot; topic in the Windows NT 4.0 Option Pack documentation.

For more information, see the following Knowledge Base article:

184058 Unable to Change Password Using the IIS 4.0 Change Password Feature

Additional query words: IIS4 IIS5 HTR

Keywords: kbprb kbpending KB315579

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.