Problem after installing SUS Server on SPSv1 SP2 Server

From: Phil (philangers_at_yahoo.fr)
Date: 11/14/03 

Date: Fri, 14 Nov 2003 15:29:41 +0100

Hi everybody !!

I've just installed SUS Server on my SPS v1 SP2 server (due to a lack of
money, couldn't do it on a dedicated server) and noticed that I can no
longer log on my SPS server !

I've noticed the explanation in the Deployment Guide SP1 from SUS about how
to workaround this issue.

They mention this :
_________________

How to use additional components of IIS (Share Point Team Services/FrontPage
Extensions/ASP.NET)

The following only applies to running SUS on the Windows Server 2003 family
of operating systems. FrontPage and Share Point Team Services should run in
the default configuration on Windows 2000 servers.

For security purposes, SUS disables a number of ISAPI handlers when
installed on the host IIS server. This can disable existing functionality
for sites that rely on any of the following technologies:

· ASP.NET

· FrontPage Server Extensions

· Share Point Services

If you have Web sites that rely on any of the above components, you will
need to re-enable the necessary ISAPI handlers after SUS Setup is completed.

To enable an ISAPI handler, perform the following steps:

1. Launch the Internet Information Services (IIS) snap-in, found in
the Administrative Tools folder on the Start menu.

2. Right-click on the server node, and then click Security. This
will launch the IIS Security Lockdown Wizard.

3. Click Next until you get to the Enable request handles page.

4. Under ISAPI Handlers, click each ISAPI handler you want to
enable. See below for a screen-shot showing this dialog box.

Figure 34

Once you have selected the desired set of ISAPI handlers to enable, proceed
through the rest of the wizard.

For ASP.NET pages, you need to enable the ASP.NET ISAPI Handler.

For FrontPage Server Extensions and Share Point, you need to enable the
following ISAPI Handlers:

· admin.dll

· fpadmdll.dll

· author.dll

· owssvr.dll

· shtml.dll

___________________

The point is that I'm not very learned in "ISAPI handler" and how to get to
the famous "Security" button ? on the server node ! I didn't find any button
or Tab except for Directory security but this is quite different.

Furthermore, SUS installs a full package, therefore, I have no idea about
which version of IISLockdown is installed and where since I didn't notice
any wizard to help me !

I browsed the KB but most of the events mentioned are not related to mine,
and looking at URLScan.ini trying to allow extensions etc didn't solve my
problem whatsoever since most of the sections look correct in this file !

Hereunder are the 2 events noticed daily in my event manager :

    - Event ID 101 / W3SVC : The server was unable to add the virtual root
'<virtual directory>' for the directory '<directory>' due to the following
error: The system cannot find the file specified. The data is the error
code.
      - Event ID 10002 / DCOM : Access denied attempting to launch a DCOM
Server. The server is: {<GUID>} --> the GUID is : GUID:
9DA0E106-86CE-11D1-8699-00C04FB98036

For this latter event, I've taken a look at Q320204 !
This article is not of much help since I believe that MDAC 2.7 is not part
of SUS package !

Anybody has an idea !!?

For information, my server is a Win2k Advanced Server Sp3.

Help would be very much appreciated !

Thanks in advance !

Phil.