2003 SP2 IIS 6.0 401.2

2003 SP2 IIS 6.0 401.2

am 21.01.2008 10:11:01 von MrMajorThorburn

I have two servers (integration test, user acceptance test) on which I am
trying to setup the same web application.
Both are running the same OS and IIS 6.0 patch levels.
One is working the other is not.
The one failing is giving me a 401.2 Unauthorized logon failed due to server
configuration.
I am logged on as local administrator and running the brower locally.
I have compared the IIS and NTFS settings and as far as I can tell they are
the same except the second server has an additional group with read/file list
access.
There is nothing in the IIS log to reflect the error.
Anyone any hints as to how I may sort this problem out?

Regards, Major.
p.s. Major is my Christian name ;-)

Re: 2003 SP2 IIS 6.0 401.2

am 21.01.2008 10:47:29 von Ken Schaefer

This error could be because the application itself is denying access (e.g.
it is an ASP.NET or similar ISAPI application), or becuase you have enabled
no authentication mechanisms in IIS.

Cheers
Ken

"Mr Major Thorburn" wrote in
message news:37DCBC18-206E-4FA7-8A36-EA470CEF9838@microsoft.com...
>I have two servers (integration test, user acceptance test) on which I am
> trying to setup the same web application.
> Both are running the same OS and IIS 6.0 patch levels.
> One is working the other is not.
> The one failing is giving me a 401.2 Unauthorized logon failed due to
> server
> configuration.
> I am logged on as local administrator and running the brower locally.
> I have compared the IIS and NTFS settings and as far as I can tell they
> are
> the same except the second server has an additional group with read/file
> list
> access.
> There is nothing in the IIS log to reflect the error.
> Anyone any hints as to how I may sort this problem out?
>
> Regards, Major.
> p.s. Major is my Christian name ;-)

Re: 2003 SP2 IIS 6.0 401.2

am 21.01.2008 11:11:06 von MrMajorThorburn

Ken, thanks for the response.
The application itself only checks if the user is a member of an AD group as
and I am running the same application on both servers I dont believe its an
application problem.
In IIS the Directory Security, Authentication Methods settings are the same
on both servers, both using Integrated Windows authentication.
I have been through all the IIS settings on both servers compairing side by
side the settings and have not found any differences.

Have you any idea why there is nothing in the log?
Are there any more extensive logging options I could use?

Regards, Major.

"Ken Schaefer" wrote:

> This error could be because the application itself is denying access (e.g.
> it is an ASP.NET or similar ISAPI application), or becuase you have enabled
> no authentication mechanisms in IIS.
>
> Cheers
> Ken
>
> "Mr Major Thorburn" wrote in
> message news:37DCBC18-206E-4FA7-8A36-EA470CEF9838@microsoft.com...
> >I have two servers (integration test, user acceptance test) on which I am
> > trying to setup the same web application.
> > Both are running the same OS and IIS 6.0 patch levels.
> > One is working the other is not.
> > The one failing is giving me a 401.2 Unauthorized logon failed due to
> > server
> > configuration.
> > I am logged on as local administrator and running the brower locally.
> > I have compared the IIS and NTFS settings and as far as I can tell they
> > are
> > the same except the second server has an additional group with read/file
> > list
> > access.
> > There is nothing in the IIS log to reflect the error.
> > Anyone any hints as to how I may sort this problem out?
> >
> > Regards, Major.
> > p.s. Major is my Christian name ;-)
>
>

Re: 2003 SP2 IIS 6.0 401.2

am 22.01.2008 02:19:05 von Ken Schaefer

> The application itself only checks if the user is a member of an AD group
> as
> and I am running the same application on both servers I dont believe its
> an
> application problem.

And how does it deny access to a user if group membership can not be
retrieved?

> Have you any idea why there is nothing in the log?

That is definately odd. Anything in the Windows Event Logs to indicate what
might be the problem?

Cheers
Ken


"Mr Major Thorburn" wrote in
message news:82F99F9E-CFD6-453B-9ACB-99FD9804A146@microsoft.com...
> Ken, thanks for the response.
> The application itself only checks if the user is a member of an AD group
> as
> and I am running the same application on both servers I dont believe its
> an
> application problem.
> In IIS the Directory Security, Authentication Methods settings are the
> same
> on both servers, both using Integrated Windows authentication.
> I have been through all the IIS settings on both servers compairing side
> by
> side the settings and have not found any differences.
>
> Have you any idea why there is nothing in the log?
> Are there any more extensive logging options I could use?
>
> Regards, Major.
>
> "Ken Schaefer" wrote:
>
>> This error could be because the application itself is denying access
>> (e.g.
>> it is an ASP.NET or similar ISAPI application), or becuase you have
>> enabled
>> no authentication mechanisms in IIS.
>>
>> Cheers
>> Ken
>>
>> "Mr Major Thorburn" wrote in
>> message news:37DCBC18-206E-4FA7-8A36-EA470CEF9838@microsoft.com...
>> >I have two servers (integration test, user acceptance test) on which I
>> >am
>> > trying to setup the same web application.
>> > Both are running the same OS and IIS 6.0 patch levels.
>> > One is working the other is not.
>> > The one failing is giving me a 401.2 Unauthorized logon failed due to
>> > server
>> > configuration.
>> > I am logged on as local administrator and running the brower locally.
>> > I have compared the IIS and NTFS settings and as far as I can tell they
>> > are
>> > the same except the second server has an additional group with
>> > read/file
>> > list
>> > access.
>> > There is nothing in the IIS log to reflect the error.
>> > Anyone any hints as to how I may sort this problem out?
>> >
>> > Regards, Major.
>> > p.s. Major is my Christian name ;-)
>>
>>