Can't configure anonymous DCOM with XPSP2(RC1) => 0x800706F7 (stub received bad data)
From: Jürgen Moser (mosju_at_bizerba.de)
Date: 05/26/04
- Next message: carmen: "Re: gina, WinXP, smart card"
- Previous message: millerw: "Re: Discover domain membership"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 26 May 2004 15:08:16 +0200
Hi,
thank you for your hint, but we know this documentation.
Following the DCOM section of this docu
the configuration we did should solve the problem, but it didn't.
An interesting detail is, that it is not possible to grant rights to
ANONYMOUS_LOGON when using RPC_C_AUTHN_LEVEL_NONE/RPC_C_IMP_LEVEL_ANONYMOUS
due to legacy WIN32 API
restrictions.
May this be a logical deadlock?
ANONYMOUS_LOGON requires "access rights", but these necessary rights are not
considered because authentication is disabled?
And why get the clients 0x800706F7?
Regards,
TBS
(PS: of course we disabled the firewall)
> This may be covered in the public documentation
> see
> http://www.microsoft.com/technet/prodtechnol/winxppro/maintain/sp2netwk.mspx#XSLTsection127121120120
>> Hello,
>> please help,
>> or can sb give a hint whether we miss sth.?
>>
>> All communication worked perfectly but after after installing XPSP2 (RC2)
>> we have severe problems:
>>
>> Our cluster-nodes communicate via DCOM and following the release notes of
>> SP2 it should be possible to configure XP to allow anonymous and
>> unauthenticated DCOM like before SP2.
>> After installing SP2 we didn't manage to configure our machines to allow
>> acces to the clients.
>>
>> The best status was, that Start/Activation was successful,
>> but the calls were denied with ACCESS_DENIED or 0x800706F7(The stub
>> received bad data)!
>>
>> Our Servers and Clients call CoInitializeSecurity(0, -1, 0, 0,
>> RPC_C_AUTHN_LEVEL_NONE, RPC_C_IMP_LEVEL_ANONYMOUS,
>> 0, EOAC_NONE, 0) or
>> CoSetProxyBlanket(pIUnk,
>> RPC_C_AUTHN_WINNT,RPC_C_AUTHZ_NONE,NULL,
>> RPC_C_AUTHN_LEVEL_NONE,RPC_C_IMP_LEVEL_ANONYMOUS,
>> NULL,EOAC_NONE)
>> on any Interface.
>>
>> Because SP2 limits MachineAccess and MachineLaunch
>> I manually added ANONYMOUS_LOGON and EVERYONE and granted
>> LL,LA,RL,RA via DCOMCNFG inside the new limits dialogs
>> (which sets the HKLM\SOFTWARE\Microsoft\OLE\MachineAccessRestriction and
>> MachineLaunchRestriction keys).
>> I also enabled mapping of Anonymous users to Everyone in the local
>> security settings.
>>
>> Setting the ActivationFailureLoggingLevel =1 and CallFailureLoggingLevel
>> =1 shows no log events indicating any problem.
>>
>> Any help would be great,
>> TBS
>>
>
>
- Next message: carmen: "Re: gina, WinXP, smart card"
- Previous message: millerw: "Re: Discover domain membership"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
