Error when Migrating SOAP Web Services from Adobe ColdFusion 8 to CF 11

After moving a CF 8 app to CF 11, I ran into a difficulty in trying to set up the Web Service in the CF 11 Administrator.

CF Administrator error message

Since I couldn’t get the CF 11 server to accept a new entry in the Web Services list, I had to do a little more troubleshooting using what was already there. I changed the HOSTS file on the CF 11 server such that the name old server running the Web Service successfully on CF 8 would temporarily point at the new CF 11 server. This caused an interesting error!

The code that came back is below – slightly edited for readability and also to make if render in a browser correctly:

   IIS 8.5 Detailed Error - 401.2 - Unauthorized    

HTTP Error 401.2 - Unauthorized

You are not authorized to view this page due to invalid authentication headers.

Most likely causes:

  • No authentication protocol (including anonymous) is selected in IIS.
  • Only integrated authentication is enabled, and a client browser was used that does not support integrated authentication.
  • Integrated authentication is enabled and the request was sent through a proxy that changed the authentication headers before they reach the Web server.
  • The Web server is not configured for anonymous access and a required authorization header was not received.
  • The "configuration/system.webServer/authorization" configuration section may be explicitly denying the user access.

Things you can try:

  • Verify the authentication setting for the resource and then try requesting the resource using that authentication method.
  • Verify that the client browser supports Integrated authentication.
  • Verify that the request is not going through a proxy when Integrated authentication is used.
  • Verify that the user is not explicitly denied access in the "configuration/system.webServer/authorization" configuration section.
  • Create a tracing rule to track failed requests for this HTTP status code. For more information about creating a tracing rule for failed requests, click here.

Detailed Error Information:

Module   IIS Web Core
Notification   AuthenticateRequest
Handler   ISAPI-dll
Error Code   0x80070005
Requested URL   http://mywebsite:80/jakarta/isapi_redirect.dll
Physical Path   D:\ColdFusion11\config\wsconfig\1\isapi_redirect.dll
Logon Method   Not yet determined
Logon User   Not yet determined

More Information:

This error occurs when the WWW-Authenticate header sent to the Web server is not supported by the server configuration. Check the authentication method for the resource, and verify which authentication method the client used. The error occurs when the authentication methods are different. To determine which type of authentication the client is using, check the authentication settings for the client.

View more information »

Microsoft Knowledge Base Articles:

  • 907273
  • 253667

When rendered, this code would look like this:

HTTP 401.2 error from IIS

This reminded me of a problem I’d had before!

Sure enough, Anonymous Access was not enabled on the jakarta virtual directory. After enabling that and disabling Windows Authentication on that folder, everything worked properly!

Loading Facebook Comments ...
%d bloggers like this: