IIS/WXP permissions problems
jon_scriven_at_hotmail.com
Date: 06/10/04
- Next message: Tom Kaminski [MVP]: "Re: Web Server Authentication"
- Previous message: Gorge Bush: "Windows Authentication"
- Next in thread: jon_scriven_at_hotmail.com: "Re: IIS/WXP permissions problems"
- Reply: jon_scriven_at_hotmail.com: "Re: IIS/WXP permissions problems"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 10 Jun 2004 05:30:57 -0700
Hi,
I've been having this problem and was hoping that someone could point
me in the right direction.
Server: Windows 2000 SP4, IIS Version 5 (I think ??) - Whatever the
default is for this OS.
Clients: Windows XP Pro SP1. IE6 SP1 patched up to date.
I have this weird problem with all the Windows XP clients that I DON'T
get with clients using Windows 2000 Pro SP4 despite everything all the
conditions apparently being exactly the same.
I am accessing a website which is on a local server.
I only want people to login who are part of the local domain and so
have set the virtual directory to use Windows integrated security.
As far as I can see, everything else looks OK.
Now here is the problem.
If I view the page using a Windows 2000 client, it is served up fine
and everything works just as it should.
However, if I view the page using a Windows XP client, I am prompted
for a username and password. If I type in a valid network login, the
login window appears again and after three attempts I get, "HTTP 401.3
- Access denied by ACL on resource
Internet Information Services".
If at this login prompt, I login as a domain administrator, the site
will then work for the duration of this IE session. If I set the user
to domain admin, they can then use the website without a problem.
I have been assuming this is a permissions problem, but don't
understand why Windows 2000 clients can use the site without a
problem. Is the authentication process different ??
Also, I can login as the same user on a Windows 2000 machine (who has
been experiencing this problem under Windows XP) and the site works
fine.
I have also tried adding various versions of the server name to the
Intranet zone, but this doesn't seem to make any difference.
One other thing which may or may not be relevant is that I have this
message appearing regularly in the application log:-
-----------------------------------------------------------------------------------------------------------------------------------------------
SOURCE: SceCli
EVENTID: 1202
Security policies are propagated with warning. 0x4b8 : An extended
error has occurred.
For best results in resolving this event, log on with a
non-administrative account and search http://support.microsoft.com for
"Troubleshooting Event 1202s".
-----------------------------------------------------------------------------------------------------------------------------------------------
This problem is driving me up the wall, so any guidance could help
save my sanity !!
Thanks a lot.
Jon
- Next message: Tom Kaminski [MVP]: "Re: Web Server Authentication"
- Previous message: Gorge Bush: "Windows Authentication"
- Next in thread: jon_scriven_at_hotmail.com: "Re: IIS/WXP permissions problems"
- Reply: jon_scriven_at_hotmail.com: "Re: IIS/WXP permissions problems"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
