Re: IIS Authentication Problems

From: Ken Schaefer (kenREMOVE_at_THISadOpenStatic.com)
Date: 04/14/04 

Date: Wed, 14 Apr 2004 11:59:06 +1000

Hi

Sounds like this machine is now a domain controller, and IIS no longer has
the password for that account. I would suggest, as an initial test, going
into Active Directory Users and Computers, and manually setting the password
for the IUSR_nt-rh-adc-3 account (make it a long, complex password). Then,
go into IIS Manager, and set the password there as well.

Cheers
Ken

<anonymous@discussions.microsoft.com> wrote in message
news:1c6fa01c421b9$95c5a180$a101280a@phx.gbl...
: A) Yes, Anonymous and Intergrated
:
: B) Domain Admins, Domain Users, Everyone, Domain and local
: server Internet Guest account all have full access enabled.
:
: c) found this in there the 14th April. Event ID 529,
: Source: Security
:
: Logon Failure:
: Reason: Unknown user name or bad password
: User Name: IUSR_nt-rh-adc-3
: Domain: NT-RH-ADC-3
: Logon Type: 3
: Logon Process: NtLmSsp
: Authentication Package: NTLM
: Workstation Name: NT-RH-ADC-4
:
: d) Filemon Report, when I browse the website by right
: clicking in Internet services manager Filemon works and
: reports success, however from a browser on my workstation
: I type in the URL and always get prompted for a username
: and password, I entered the Domain Admin details, the
: local Admin details to no avail.
:
: Cheers
:
:
: >-----Original Message-----
: >Hi,
: >
: >Can you answer the following questions please?
: >
: >a) The actual file you are trying to access - does that
: have the same
: >Authentication enabled?
: >
: >b) What are the NTFS permissions for the file in question?
: >
: >c) Is there anything in the Windows Event Log? If so, can
: you post the Event
: >ID, Source and Description.
: >
: >d) If you use Filemon from www.sysinternals.com (in the
: NT/2k utilities
: >section), and filter on access denied events, can you see
: anything that may
: >be relevant?
: >
: >Cheers
: >Ken
: >
: >
: >"GPV" <anonymous@discussions.microsoft.com> wrote in
: message
: >news:1ba9801c4211f$03951060$a301280a@phx.gbl...
: >: The default website (top level) is configured to Allow
: >: Anonymous and Intergrated Windows Authentication.
: >:
: >: Thanks
: >: Garrath
: >:
: >: >-----Original Message-----
: >: >What authentication schemes are configured in
: IIS? "Allow
: >: Anonymous"? Basic?
: >: >Integrated Windows Authentication?
: >: >
: >: >Cheers
: >: >Ken
: >: >
: >: >"GPV" <anonymous@discussions.microsoft.com> wrote in
: >: message
: >: >news:18da201c42115$f1cc62b0$a601280a@phx.gbl...
: >: >: Hi
: >: >:
: >: >: I am running IIS 5 on a W2K server and AD. I have
: >: looked
: >: >: at the postings and tried a few suggestions but to no
: >: >: avail.
: >: >:
: >: >: My problem is when I try to browse the default web
: site
: >: it
: >: >: asks me for a user name and password. I have given
: the
: >: >: Local Admin username and password and also the AD
: Admin,
: >: >: and IUSR_servername all to no avail. I tested Apache
: >: for
: >: >: windows and put the url in for the server and it
: worked
: >: >: out of the box. I don't want to use Apache. I have
: >: setup
: >: >: the ACL permissions on the folders to allow local
: admin
: >: AD
: >: >: admin and IUSR account name full access for testing
: >: >: purposes. My DNS also has the correct record for the
: >: >: intranet site. This website is only internal to my
: >: users.
: >: >: IIS is difficult to manage it seems out of the box.
: >: >:
: >: >: Can someone please help, what am I missing? :(
: >: >:
: >: >:
: >: >
: >: >
: >: >.
: >: >
: >
: >
: >.
: >

Relevant Pages

  • Re: Basic Authentication fails with Error 401.2 where Integrated s
    ... I didn't realise the Web Sites folder in IIS manager threw up a global ... sure that Basic Authentication is allowed to function on your server. ... ACCOUNTNAME, this is the account that I am trying to grant access to: ... Account: COMPUTERNAME\ACCOUNTNAME Access type: FULL ...
    (microsoft.public.inetserver.iis.security)
  • Re: Basic Authentication fails with Error 401.2 where Integrated s
    ... On the IIS directory security tab, anonymous access is disabled, digest ... authentication is disabled, integrated authentication is disabled and basic ... account created has full permissions for the folder and the file that's in it. ...
    (microsoft.public.inetserver.iis.security)
  • Re: Basic Authentication fails with Error 401.2 where Integrated s
    ... Just as a check I used NET USER /ADD on my test account and as expected ... The password dialog is supposed to appear for Basic authentication ... Thinking more esoterically now -- what are the login rights assigned ... IIS uses a specific login type, ...
    (microsoft.public.inetserver.iis.security)
  • Re: IIS 5 Authentication problem- solved
    ... Tom Kaminski IIS MVP ... Can you log in using an administrator account, ... >> Subject: Re: IIS 5 Integrated Windows Authentication ... >> case there is no group, it is just the one server, ...
    (microsoft.public.inetserver.iis.security)
  • Re: IIS 6 fails anonymous connection
    ... It sounded like you configured sub-authentication, which on prior IIS ... The reason that you have to have Integrated authentication enabled along ... so there is some sort of configuration problem specific to ... The resources must also be ACL'd for this user account or else you will get ...
    (microsoft.public.inetserver.iis.security)