Re: Effective Policy Setting for IWAM_Machinename account
From: Chris (NoSpam_at_Spamless.net)
Date: 07/28/03
- Next message: Paul: "Secure Boot Settings"
- Previous message: Johnny: "Assigning Certificates"
- In reply to: Steven L Umbach: "Re: Effective Policy Setting for IWAM_Machinename account"
- Next in thread: Steven L Umbach: "Re: Effective Policy Setting for IWAM_Machinename account"
- Reply: Steven L Umbach: "Re: Effective Policy Setting for IWAM_Machinename account"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 28 Jul 2003 17:31:08 -0300
Steve,
Yep, the web server is in a domain and I've got domain administrative
rights.
Christopher.
"Steven L Umbach" <n9rou@comcast.net> wrote in message
news:6lbVa.165666$N7.22577@sccrnsc03...
> Just to verify for me. That computer is in a domain and you have
domain
> administrative rights? --- Steve
>
>
> "Chris" <NoSpam@Spamless.net> wrote in message
> news:#XPzCCQVDHA.624@TK2MSFTNGP10.phx.gbl...
> > Thanks for your reply Steve,
> >
> > Sorry, I'm a bit new to this stuff. Can you tell me what an OU and a
GPO is
> > so that I can find out how to create them.
> >
> > Thanks,
> > Christopher.
> >
> > "Steven L Umbach" <n9rou@comcast.net> wrote in message
> > news:DI1Ua.123326$OZ2.24890@rwcrnsc54...
> > > You could create an OU for that computer and move it into it.
Then
> > create a
> > > new GPO for the OU. Then add the accounts you need to that user right.
> > Everything
> > > else in the GPO will be undefined, but that particular user right you
> > configure will
> > > override the domain policy and show up as your "effective" setting. Do
not
> > "browse"
> > > for those account names, just type/copy them into the add box. ---
Steve
> > >
> > >
> > > "Chris" <NoSpam@Spamless.net> wrote in message
> > > news:OYM1pLiUDHA.1744@TK2MSFTNGP12.phx.gbl...
> > > > I receive this error message every so often when trying to run a
ISAPI
> > > > application in HIGH mode on IIS5 (win 2000 server)...
> > > >
> > > > DCOM got error "Logon failure: the user has not been granted the
> > requested
> > > > logon type at this computer. " and was unable to logon
.\IWAM_NT_ISA01
> > in
> > > > order to run the server:
> > > >
> > > > {167A80F6-04DB-4883-9958-C04FD265AA28}
> > > >
> > > >
> > > > I have found a knowledge base article that tells me that I need to
give
> > > > IWAM_MachineName account "Logon as a batch job" rights...
> > > >
> > > > http://support.microsoft.com/default.aspx?scid=kb;EN-US;297519
> > > >
> > > > But at the end it says...
> > > >
> > > > 1.. On the Administrative Tools menu, expand Local Security
Policies.
> > > > 2.. Select User Rights Assignment.
> > > > 3.. Select the IWAM_MACHINENAME and IUSR_MACHINENAME
accounts.NOTE: If
> > > > domain level policy settings are defined, they override local policy
> > > > settings. Make sure that the Effective Policy Setting is also
selected
> > (this
> > > > setting is dimmed). Contact your domain administrator if this
setting is
> > not
> > > > selected.
> > > >
> > > > How do I make the Effective Policy Setting selected? On the Domain
> > > > Controller machine (a different win 2000 server) there is no way to
> > select
> > > > the user IWAM_MachineName because it is a user local the the web
server
> > > > machine.
> > > >
> > > > Can anyone tell me how to get this "Logon as batch job" in the
Effective
> > > > Policy Setting.
> > > >
> > > > Thanks,
> > > > Christopher.
> > > >
> > > >
> > >
> > >
> >
> >
>
>
- Next message: Paul: "Secure Boot Settings"
- Previous message: Johnny: "Assigning Certificates"
- In reply to: Steven L Umbach: "Re: Effective Policy Setting for IWAM_Machinename account"
- Next in thread: Steven L Umbach: "Re: Effective Policy Setting for IWAM_Machinename account"
- Reply: Steven L Umbach: "Re: Effective Policy Setting for IWAM_Machinename account"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
