Error message when you try to browse a Web page that is hosted on IIS 7.0: "HTTP Error 403.5 - Forbidden"


When you try to browse a Web page that is hosted on Internet Information Services (IIS) 7.0, you receive the following error message:
Server Error in Application "<application name>"
HTTP Error 403.5 - Forbidden

HRESULT: 0x80070005

Description of HRESULT

Access is denied.


This problem occurs because the Web server is configured to require a 128-bit Secure Sockets Layer (SSL) connection. However, the client browser does not support 128-bit encryption.


To resolve this problem, use one of the following methods.

Client-side resolution

Use a client Web browser that supports 128-bit SSL to send the Web requests, such as Windows Internet Explorer 7.

Server-side resolution

Important These steps may increase your security risk. These steps may also make the computer or the network more vulnerable to attack by malicious users or by malicious software such as viruses. We recommend the process that this article describes to enable programs to operate as they are designed to or to implement specific program capabilities. Before you make these changes, we recommend that you evaluate the risks that are associated with implementing this process in your particular environment. If you decide to implement this process, take any appropriate additional steps to help protect the system. We recommend that you use this process only if you really require this process.

You can remove the requirement for 128-bit encryption from the Web server. To do this, follow these steps.

Note This method lowers the security level of the Secure Sockets Layer (SSL) communication.
  1. On the computer that has IIS 7.0 installed, click Start, type Inetmgr in the Start Search box, right-click Inetmgr, and then click Run as administrator.

    If you are prompted for an administrator password or for a confirmation, type your password, or click Continue.
  2. In Internet Information Services (IIS) Manager, locate the level that you want to manage.
  3. In Features view, double-click SSL Settings.
  4. On the SSL Settings page, clear the Require 128-bit SSL check box.

  5. In the Actions pane, click Apply.