Re: Event ID 537 Digest Authentication

From: Isaac (Isaac_at_discussions.microsoft.com)
Date: 08/23/05 

Date: Tue, 23 Aug 2005 07:58:09 -0700

I know the username and password validity is not the issue. I have also
tried this with my normal Windows account (the one I use to login or unlock
20 times a day), and I receive the same error. The package part is what I
was thinking, but I have no idea where to look.

I am running as local system, and I confirmed that the setting in question
is not set in the metabase. I tried using the Authdiag tool and actually had
some odd responses. When I ran it from the server itself, I was working
through remote desktop. When the tool launched the web site it would say
something like "Waiting for response from remote http". When the login
failed, the authdiag tool never received that failure information. However,
when I ran the tool from my PC, it did return information. Nothing I thought
was useful, though.

Isaac

"Ken Schaefer" wrote:

> Ouch:
>
> 0xC000006D =
> STATUS_LOGON_FAILURE
> The attempted logon is invalid. This is either due to a bad
> username or authentication information.
>
> 0xC00000FE =
> STATUS_NO_SUCH_PACKAGE
> A specified authentication package is unknown.
>
> Not really sure what the problem is. From your configuration information,
> you didn't mention the following:
> - are you running the worker process as LocalSystem?
> - you have UseDigestSSP set to 0 (or not set at all) in the metabase for the
> appropriate node?
>
> Also, have you tried using AuthDiag (from the MS website) to see if there is
> any other config that might need to be set? IIRC AuthDiag does some basic
> config checking
>
> Cheers
> Ken
>
> --
> IIS Blog: www.adopenstatic.com/cs/blogs/ken/
> Web: www.adopenstatic.com
>
>
> "Isaac" <Isaac@discussions.microsoft.com> wrote in message
> news:68B079B8-51AC-438A-88E8-6549FA5637BB@microsoft.com...
> : Yes to your second question.
> :
> : Event details:
> :
> : Logon Failure:
> : Reason: An error occurred during logon
> : User Name: isaacftp
> : Domain: strategicinc.com
> : Logon Type: 3
> : Logon Process: WDIGEST
> : Authentication Package: WDigest
> : Workstation Name: -
> : Status code: 0xC000006D
> : Substatus code: 0xC00000FE
> : Caller User Name: -
> : Caller Domain: -
> : Caller Logon ID: -
> : Caller Process ID: -
> : Transited Services: -
> : Source Network Address: 10.16.16.56
> : Source Port: 1640
> :
> :
> :
> :
> :
> : "Ken Schaefer" wrote:
> :
> : > Hi,
> : >
> : > I'm not familiar enough with Digest Authentication to know exactly
> what's
> : > going wrong here, however:
> : >
> : > a) Can you post all the details of the 537 event please?
> : >
> : > b) After enabling "store passwords using reversible encryption" for the
> user
> : > in question, did you reset their password? (so that the reversible
> version
> : > is now stored?)
> : >
> : > Cheers
> : > Ken
> : >
> : > --
> : > IIS Blog: www.adopenstatic.com/cs/blogs/ken/
> : > Web: www.adopenstatic.com
> : >
> : >
> : > "Isaac" <Isaac@discussions.microsoft.com> wrote in message
> : > news:F908C539-FA99-4B21-8360-92D4F3EA3246@microsoft.com...
> : > :I have been fighting this for a few days now, so any help would be
> : > : appreciated!!!!
> : > :
> : > : I am using a Windows 2003 SP1 server to setup a new website that will
> : > : require authentication. I have the only authentication for that web
> site
> : > set
> : > : to be digest authentication. This machine is not a domain controller,
> and
> : > my
> : > : domain is Windows 2000. I do have the following configured:
> : > :
> : > : Reversable encryption for user accounts
> : > : Subauthentication installed on IIS server
> : > : I have disabled the loopback check (even though I am doing an
> : > : http://computername/folder)
> : > : Realm is configured to my domain
> : > :
> : > : Everytime I try to athentication, my security log shows an event id
> 537
> : > for
> : > : the WDIGEST logon process. Browser (IE 6 SP1 latest and greatest
> patches)
> : > : gets a 401.1 error as well.
> : > :
> : > : HELP!!!!
> : >
> : >
> : >
>
>
>