Re: Additional Restrictions - option

From: bimosekin (bimosekin@hotmail.com)
Date: 03/31/03 

From: "bimosekin" <bimosekin@hotmail.com>
Date: Mon, 31 Mar 2003 06:36:39 -0800

BB,

Thanks. The "users" group already have the permission
mentioned in the KB: "Log on Locally" and Access this
computer from the netwrok", and all the user_accounts are
in this group. The FTP is configured for both Anonymous
and Windows integrated.

I have anyway decided to do away with the "Additional
Restrictions for Anonymous Connections" option. The most
funny thing now is that the problem still persist, which
was not the case before.

I no longer Know what exactly is going on.

bimoseekin

>-----Original Message-----
>Try
>http://support.microsoft.com/?id=200475
>
>if no luck, get filemon from sysinternals.com,
>run it, then try to access, look for 'access denied'
>entry, then granted related rights.
>
>
>--
>Regards,
>Bernard Cheah
>http://support.microsoft.com/
>
>
>"bimosekin" <bimosekin@hotmail.com> wrote in message
>news:029001c2f750$169b0e20$a101280a@phx.gbl...
>> Bernard,
>>
>> Yes, the error msgs is 530 "User cannot log in, home
>> directory inaccessible. Login failed"
>>
>> This could not be the case since the user is in a group
>> that has the same access and permissions, and there is
no
>> where anyone is denied access.
>>
>> What steps should I take to rectify this?
>>
>> Thanks,
>> bimosekin
>>
>> >-----Original Message-----
>> >What will be the error msgs ? 530 ?
>> >have you try using ftp.exe and login as
>> >that user at that workstation ?
>> >
>> >
>> >--
>> >Regards,
>> >Bernard Cheah
>> >http://support.microsoft.com/
>> >
>> >
>> >"bimosekin" <bimosekin@hotmail.com> wrote in message
>> >news:046d01c2f553$0284bf20$2f01280a@phx.gbl...
>> >> In trying to harden security on our W2K/IIS5.1, I
>> enable
>> >> the enabled the "Additional Restrictions for
Anonymous
>> >> Connections" by setting the option to "2 - No access
>> >> without explicit anonymous permission, on the "local
>> >> security" configuration.
>> >>
>> >> This is working fine, however, I have some users'
>> account
>> >> on the system who connect through FTP. The funny
>> thing is
>> >> that some succeeds while some fails, even when they
>> are in
>> >> the same group. These users' have appropriate NTFS
>> >> permission on their respective FTP folder. They can
>> >> connect again once I reset this option to "0". I
have
>> >> make sure that "everyone" do not have denied
permission
>> >> anywhere, and there is no where the failing users'
have
>> >> restriction permission on their respective folder.
>> >>
>> >> Where should I check again?
>> >
>> >
>> >.
>> >
>
>
>.
>

Relevant Pages

  • Re: canNOT write to FTP (IIS 6)
    ... >> Bernard Cheah ... >>> else is controlled via NTFS permissions, ... >>> permissions to the folders yet can write a file to them. ... >>>> permission and then NTFS. ...
    (microsoft.public.inetserver.iis.ftp)
  • Re: 404 on an upgraded W2K to W2K3 Server
    ... for permission error, I would try filemon to trace. ... "topokin" wrote in message ... > are working again but I am still have problem with PHP. ... >> Bernard Cheah ...
    (microsoft.public.inetserver.misc)
  • Re: Adobd errors Permission denied IIS6
    ... > denied similar on the ASP pointing to SQL pages. ... > from IWA login as admin and switch back to anonymous works for a while? ... >> permission to this account? ... >> Bernard Cheah ...
    (microsoft.public.inetserver.iis.security)
  • Re: How to set the home directory to a Network Drive
    ... Bernard Cheah ... I did try UNC, but it didn't work and I have a fulll permission on it. ... Does anyone know how to set the FTP home directory on the network ...
    (microsoft.public.inetserver.iis.ftp)