Re: Granting permissions to "NETWORK AUTHORITY"

• Previous message: alantang(Anti-Spam): "Re: How to identify which process cause account lockout"
• In reply to: Brian Cline: "Granting permissions to "NETWORK AUTHORITY""
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Sat, 28 May 2005 03:07:14 GMT

On 27 May 2005 04:50:36 -0700, "Brian Cline" <clib@gptruck.com> wrote:

>The other morning I dcpromo'd our internal web server (Win2003 Server,
>IIS6), and after I did this my IIS6 sites all began requiring
>authentication since the anonymous account failed, giving me 401.1
>errors. Two messages appear in my application event log:
>
>IISADMIN service failed to verify anonymous/wam account
>DOMAIN\IUSR_SERVER. Some IIS functions can fail for this reason.
>
>Error: The Template Persistent Cache initialization failed for
>Application Pool 'DefaultAppPool' because of the following error: Could
>not create a Disk Cache Sub-directory for the Application Pool. The
>data may have additional error codes..
>
>
>I tried following the directions on
>http://support.microsoft.com/d­efault.aspx?scid=kb;en-us;3320­97, but
>when I try to grant permission to "NETWORK SERVICE", it tells me that
>there is no such object.
>
>How can I grant those permissions in Q332097 to network service? Any
>help is appreciated here.

Try the IWAM and IUSR accounts instead. Normally these are local
accounts. When you promote a server to a DC, there are no longer any
local accounts. See:

http://support.microsoft.com/default.aspx?scid=kb;en-us;275167
http://support.microsoft.com/default.aspx?scid=kb;en-us;Q263140
http://support.microsoft.com/default.aspx?scid=kb;en-us;300432
http://support.microsoft.com/default.aspx?scid=kb;en-us;190005

Jeff

• Previous message: alantang(Anti-Spam): "Re: How to identify which process cause account lockout"
• In reply to: Brian Cline: "Granting permissions to "NETWORK AUTHORITY""
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]