Re: ASP Error 0178 - Please - way behind deadline... (yes - I've done IUSR_XXX)

From: innovate2000 (innovate_@nospam.com)
Date: 07/13/02 

From: "innovate2000" <innovate_@nospam.com>
Date: Sat, 13 Jul 2002 17:08:03 -0400

The Application Log just shows the same message that I get in ASP regarding
denied access

I know I can initiate components as I can create an object reference to
"MSXML2.DomDocument.4.0" and I've mimicked the permissions on that DLL and
still get the same results...

"innovate2000" <innovate_@nospam.com> wrote in message
news:#$YwUrqKCHA.388@tkmsftngp09...
> OK - answers:
> 1. Yes the DLL is in-proc (default) and registered (I auto-assoc all dll's
> w/ regsvr32)
> 2. Audit policy done (thanks for this tip)
> 3. System Everyone, Administrators have Full Control of the folder with
the
> DLL (NTFS). Authenticated Users, Interactive, IUSR_Machine, Server
Operators
> have Read & Execute, List Folder Contents and Read permissions
> 4. DLL is installed on local drive on the server
> 5. I will remove IUSR and Interactive from DCOMCFG
>
> All but 2 & 5 were already done to no avail. I will check the event logs
to
> see what's going on.
>
> Thanks for all of your help.
>
>
> "Egbert Nierop (MVP for IIS)" <egbert_nierop@nospam.com> wrote in message
> news:u87wbKoKCHA.1724@tkmsftngp08...
> > Your configuration is a little difficult to follow but let's ask this
> >
> > the DLL is ran in-process (you use regsvr32?)
> > Can you enable security logging? Go to Local Security Policy and set the
> > Audit policy to record all failures, after this, you'll need to reboot
(or
> > force an apply for the policy which I'm not going to explain now).
> >
> > If you enable that policy, you'll exactly see which user causes what
> > permission error.
> >
> > For the sake of simplicity, can you try to allow Everyone on the DLL
> (read&
> > execute)? If that does help, you're looking in the right corner!
> >
> > IS system allowed -FULL access?
> > is Administrators allowed - Full Access?
> > Is the DLL located on a network drive? If yes, you'll need to place it
> > locally.
> >
> > last but not least, do not use DCOMCNFG, it can mess things up if
setting
> > security was not needed.
> >
> >
>
>

Relevant Pages

  • Re: Winsock in C#
    ... Its definitely security problems and ive been changing the permissions to ... Everything works fine until my dll starts to call the ... SocketProcessor processor = new SocketProcessor; ...
    (microsoft.public.dotnet.languages.csharp)
  • Re: Policy from old domain applying to computers in new domain...
    ... To remove the old permissions (Which you won't easily ... You may be surprised how much security is ... using ADMT to a new domain would only receive policy from the new domain. ... future bothers me. ...
    (microsoft.public.windows.server.active_directory)
  • Re: Password problem .
    ... Check their account properites/account in AD to make sure that user can not ... We have a policy on the domain to change a ... > anonymous permissions is not enable in the Local Security ...
    (microsoft.public.win2000.security)
  • Re: Security Policy Error
    ... the locked-down security that was originally set on the FRS through Group ... When you attempt to configure the FRS through Group Policy, ... > any service with misconfigured permissions, ...
    (microsoft.public.win2000.security)
  • Re: ASP Error 0178 - Please - way behind deadline... (yes - Ive done IUSR_XXX)
    ... Also compare the Security Settings for msxml4.dll, ... Audit policy done ... > DLL. ... List Folder Contents and Read permissions ...
    (microsoft.public.inetserver.iis.security)
Loading