��к�

Select the product you need help with

acl ��С�� MetaACL ��Ѻ metabase ACL �Է��㹡��¹�ŧ

��Ţ�� (Article ID): 326902 - ��Ե�ѳ��Ǣ�ͧ㹺��

��Ӥѭ��Сͺ��¢��ǡѺ�� metabase ��͹��س��䢡�� metabase ��Ǩ�ͺ�� س��ͧ��س��ö�׹��ҡ�Դ�ѭ�� Ѻ��ǡѺ�Ըա�÷��蹹�� ٷ��Ǣ��Ը�� "��á�˹��ͧ ��/Restore " � Microsoft Management Console (MMC)

��·�� | �غ��

��͸Ժ��Ըա��Ҷ֧��ǤǺ��¡�� (acl) �ҹ� Microsoft Internet �� Server (IIS) 4.0 �� Microsoft ��ź�ԡ�÷ҧ�Թ�� (IIS) 5.0 metabase metabase ��ҹ�鹶١��ͧ�ѹ ��к��Ժѵԡ�� ACLs ��੾�� (Metabase.bin), ��ѧ�ա�û�ͧ�ѹ ACL ��á��յ��ͧ

��˵�:�� Metabase.bin ��á�� X.500 Lightweight ��á��ա��Ҷ֧��ⷤ�� (LDAP) ��ҡѹ��ҧ��ó� ��ж١��ʹ��ͧ�Ѻ�Է��㹤��ѹ�� Parent\Child �ѧ�� acl �� recursively ��á��շ��騹��Ҩж֧�ҡ

��ѧ͸Ժ�º��ҷ�ͧ acl � IIS metabase �Ըա�� acl �� acl ��Ѻ IIS 4.0 �� IIS 5.0

��Ѻ仴�ҹ�� | ��ʹ��

��

��¡�á�äǺ��Ҷ֧

��

� metabase, acl �ӡѴ��Ҷ֧�ͧ�ѭ�ռ��੾�СѺ��͹��á�� Metabase.bin �ͧ��Դ�ͧ�Է��Ѻ��͹حҵ��Ѻ acl:

access_allowed_ace
access_denied_ace

Microsoft �й�� س��੾��access_allowed_ace��ͧ�ҡ Microsoft �� extensively ��ͺaccess_denied_ace.

��ͧ�ҡ�� ACL ��١�� metabase �ͧ㹹��md_admin_acl�س��ѵ� �س��ö�٢��ǡѺ metabase ��价��ô��ͧ�� Adsutil �� Mdutil

�Է��ҹ��

��ͤس�� acl metabase �Է��仹��о��ҹ:

md_acr_unsecure_props_read: ��Ѻ��Ẻ��ҹ��ҧ��Ҷ֧�س��ѵ� nonsecure � �
md_acr_read: ��Է��㹡��ѡ�Ҥ��ʹ�� nonsecure �س��ѵ��ҹ
md_acr_enum_keys: ��ҹ��кت��ͷ��ͧ�˹��
md_acr_write_dac: ��Է��㹡��¹ ��ҧ��AdminACL�س��ѵԷ��˹��ʹ��ͧ�ѹ
md_acr_write: ��Է��㹡�� (��͡�õ�駤��) �س��ѵ�¡��鹤س��ѵ�Ẻ�ӡѴ ��Ѻ�� Ǣ��ǡѺ�س��ѵԷ��١�ӡѴ ��ŵ��
md_acr_restricted_write: ��ҹ��ͻ�Ѻ��¹�س��ѵԷ��˹����ҹ��. �Է��ǤǺ��Ẻ��Ѻ��

�� acl

��͹��Ҥس�� metabase ��١��ͧ �س��ö��Դ�ѭ��ç��Ҩ��س�Դ��駼�Ե�ѳ�� metabase �� Microsoft ��ö�Ѻ��Сѹ�� ѭ�ҷ��Ҥس�� metabase ��١��ͧ��ö�� metabase �ͧ�س��ͧ��Ѻ��§

��˵�:��ͧ metabase ��͹��س��

��͵�ͧ�� acl �س��ͧ��ö��ª�� Metaacl.vbs��Ѻ�� ԡ��Ţ��仹�� ʹٺ��㹰ҹ��ͧ Microsoft::

267904

(http://support.microsoft.com/kb/267904/ )

Metaacl.exe ��Ѻ��¹�Է��ѵ�ء�èѴ��к� IIS metabase

��ҧ��Ѻ��¹w3svc��û��ʸ��Ҷ֧��Ѻ��ŷ��

��͹��蹹��к��ü�Ե��ö��ѹ��ҡ ��з�� IIS ��㹡�÷ӧҹ��Ѻ��͡Ẻ ��ҧ��鹵͹��ҹ��鹵͹��Ѻ��ҸԵ��ҹ��

�Ѵ�͡�� Metaacl.vbs ��á�� %systemdrive%\Inetpub\Adminscripts
��ԡ��÷ӧҹ��ԡ��¡����:cmd�� ԡ��¡����͵�ͧ��Դ��
�� ¡��觵��仹��¹��á�� Adminscripts:
c:\cd Inetpub\Adminscripts
��û�Ѻ��¹�� IIS: / / LOCALHOST/W3SVC ��¡��觵��仹��:
c:\Inetpub\Adminscripts>cscript metaacl.vbs IIS://LOCALHOST/W3SVC mydomain\mydomainaccount RW
�س��Ѻ��õͺʹͧ��仹��::
ace ��Ѻ mydomain\mydomainaccount ��

�س��ö�� Metaacl.vbs ��͵�ͧ��Է��Ѻ�� 仹��:

r ��ҹ
w ��¹
s ��¹��١�ӡѴ
u ��ҹ�س��ѵ� unsecure
e ��к�
d ��¹ DACL (͹حҵ)

acl ��ŵ��

iis 4.0

acl ��¡�õ��仹��͸Ժ�� acl ��鹷��á�� Metabase.bin ��ա�õԴ�� IIS 4.0:

LM -
   W3SVC
      BUILTIN\Administrators
        Access: RWSUED
      Everyone
        Access:     E
   MSFTPSVC
      BUILTIN\Administrators
        Access: RWSUED
      Everyone
        Access:     E
   SMTPSVC  
      BUILTIN\Administrators
        Access: RWSUED
      Everyone
        Access:     E
   NNTPSVC
      BUILTIN\Administrators
        Access: RWSUED
      Everyone
        Access:     E

��¡�õ��仹��͸Ժ�¶֧�س��ѵԷ��Ӥѭ� metabase ��ͧ�� acl ��١�ӡѴ㹡�õԴ��鹢ͧ IIS 4.0 �ӡѴ:

MD_ADMIN_ACL
MD_APP_ISOLATED
MD_VR_PATH
MD_ACCESS_PERM
MD_ANONYMOUS_USER_NAME
MD_ANONYMOUS_PWD
MD_MAX_BANDWIDTH
MD_MAX_BANDWIDTH_BLOCKED
MD_ISM_ACCESS_CHECK
MD_FILTER_LOAD_ORDER
MD_FILTER_STATE
MD_FILTER_ENABLED
MD_FILTER_DESCRIPTION
MD_FILTER_FLAGS
MD_FILTER_IMAGE_PATH
MD_SECURE_BINDINGS
MD_SERVER_BINDINGS

iis 5.0

acl ��¡�õ��仹��͸Ժ�� acl ��鹷��á�� Metabase.bin ��ա�õԴ�� IIS 5.0:

LM - 
   W3SVC
      BUILTIN\Administrators
        Access: RWSUED
      Everyone
        Access:     E 
      {IISMachineName}\VS Developers
        Access: RWSUE 
   MSFTPSVC
      BUILTIN\Administrators
        Access: RWSUED
      Everyone
        Access:     E
   SMTPSVC
      BUILTIN\Administrators
        Access: RWSUED
      Everyone
        Access:     E 
   NNTPSVC
      BUILTIN\Administrators
        Access: RWSUED
      Everyone
        Access:     E

��¡�õ��仹��͸Ժ�¶֧�س��ѵԷ��Ӥѭ� metabase ��ͧ�� acl ��١�ӡѴ㹡�õԴ��鹢ͧ IIS 5.0 �ӡѴ:

MD_ADMIN_ACL
MD_APP_ISOLATED
MD_VR_PATH
MD_ACCESS_PERM
MD_ANONYMOUS_USER_NAME
MD_ANONYMOUS_PWD
MD_MAX_BANDWIDTH
MD_MAX_BANDWIDTH_BLOCKED
MD_ISM_ACCESS_CHECK
MD_FILTER_LOAD_ORDER
MD_FILTER_STATE
MD_FILTER_ENABLED
MD_FILTER_DESCRIPTION
MD_FILTER_FLAGS
MD_FILTER_IMAGE_PATH
MD_SECURE_BINDINGS
MD_SERVER_BINDINGS

IIS 6.0:

acl ��¡�õ��仹��͸Ժ�� acl ��鹷��á�� Metabase.xml ��ա�õԴ�� IIS 6.0:

LM � 
     W3SVC 
        NT AUTHORITY\LOCAL SERVICE 
	  Access: R UE 
	NT AUTHORITY\NETWORK SERVICE 
	  Access: R UE 
	{computername}\IIS_WPG 
           Access: R UE 
        BUILTIN\Administrators 
           Access: RWSUED
        {computername}\ASPNET
           Access: R   E 
     W3SVC/Filters
        NT AUTHORITY\LOCAL SERVICE
           Access: RW UE
        NT AUTHORITY\NETWORK SERVIC
           Access: RW UE
        {computername}\IIS_WPG
           Access: RW UE
        BUILTIN\Administrators
           Access: RWSUED
     W3SVC/1/Filters
        NT AUTHORITY\LOCAL SERVICE
           Access: RW UE
        NT AUTHORITY\NETWORK SERVIC
           Access: RW UE
        {computername}\IIS_WPG
           Access: RW UE
        BUILTIN\Administrators
           Access: RWSUED
     W3SVC/AppPools
        NT AUTHORITY\LOCAL SERVICE
           Access:    U
        NT AUTHORITY\NETWORK SERVICE
           Access:    U
       {computername}\IIS_WPG
           Access:    U
        BUILTIN\Administrators
           Access: RWSUED
     W3SVC/INFO
        BUILTIN\Administrators
           Access: RWSUED
     MSFTPSVC 
        BUILTIN\Administrators 
           Access: RWSUED 
     SMTPSVC 
        BUILTIN\Administrators
           Access: RWSUED
        NT AUTHORITY\LOCAL SERVICE
           Access:    UE
        NT AUTHORITY\NETWORK SERVICE
           Access:    UE
     NNTPSVC
        BUILTIN\Administrators
           Access: RWSUED
        NT AUTHORITY\LOCAL SERVICE
           Access:    UE
        NT AUTHORITY\NETWORK SERVICE
           Access:    UE
     Logging
        BUILTIN\Administrators
           Access: RWSUED

��¡�õ��仹��͸Ժ�¶֧�س��ѵԷ��Ӥѭ� metabase ��ͧ�� acl ��١�ӡѴ㹡�õԴ��鹢ͧ IIS 6.0 �ӡѴ:

MD_ADMIN_ACL
MD_VPROP_ADMIN_ACL_RAW_BINARY
MD_APPPOOL_ORPHAN_ACTION_EXE
MD_APPPOOL_ORPHAN_ACTION_PARAMS
MD_APPPOOL_AUTO_SHUTDOWN_EXE
MD_APPPOOL_AUTO_SHUTDOWN_PARAMS
MD_APPPOOL_IDENTITY_TYPE
MD_APP_APPPOOL_ID
MD_APP_ISOLATED
MD_VR_PATH
MD_ACCESS_PERM
MD_VR_USERNAME
MD_VR_PASSWORD
MD_ANONYMOUS_USER_NAME
MD_ANONYMOUS_PWD
MD_LOGSQL_USER_NAME
MD_LOGSQL_PASSWORD
MD_WAM_USER_NAME
MD_WAM_PWD
MD_AD_CONNECTIONS_USERNAME
MD_AD_CONNECTIONS_PASSWORD
MD_MAX_BANDWIDTH
MD_MAX_BANDWIDTH_BLOCKED
MD_ISM_ACCESS_CHECK
MD_FILTER_LOAD_ORDER
MD_FILTER_ENABLED
MD_FILTER_IMAGE_PATH
MD_SECURE_BINDINGS
MD_SERVER_BINDINGS
MD_ASP_ENABLECLIENTDEBUG
MD_ASP_ENABLESERVERDEBUG
MD_ASP_ENABLEPARENTPATHS
MD_ASP_ERRORSTONTLOG
MD_ASP_KEEPSESSIONIDSECURE
MD_ASP_LOGERRORREQUESTS
MD_ASP_DISKTEMPLATECACHEDIRECTORY
36948 RouteUserName
36949 RoutePassword
36958 SmtpDsPassword
41191 Pop3DsPassword
45461 FeedAccountName
45462 FeedPassword
49384 ImapDsPassword

��Ѻ仴�ҹ�� | ��ʹ��

��ҧ�ԧ

��Ѻ��ǡѺ acl �� IIS metabase ��价��䫵��仹��ͧ Microsoft:

AdminACL
http://www.microsoft.com/technet/prodtechnol/WindowsServer2003/Library/IIS/791d575e-5364-45a9-90ef-4dfd23f38d67.mspx

(http://www.microsoft.com/technet/prodtechnol/WindowsServer2003/Library/IIS/791d575e-5364-45a9-90ef-4dfd23f38d67.mspx)

�� IIS Metabase
http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/iis/43a51d34-7c81-413b-9727-ec9a19d0b428.mspx

(http://www.microsoft.com/technet/prodtechnol/windowsserver2003/library/iis/43a51d34-7c81-413b-9727-ec9a19d0b428.mspx)

�Ҿ��ͧ�ͻ�硵� Admin iis
http://www.microsoft.com/technet/prodtechnol/windows2000serv/reskit/iisbook/c01_iis_administration_objects.mspx

(http://www.microsoft.com/technet/prodtechnol/windows2000serv/reskit/iisbook/c01_iis_administration_objects.mspx)

��Ѻ仴�ҹ�� | ��ʹ��

�س��ѵ�

��Ţ�� (Article ID): 326902 - ��Ǥ��ش��: 13 ��Ҥ� 2554 - Revision: 5.0

��Ѻ

Microsoft Internet Information Services 6.0
Microsoft Internet Information Services 5.0

kbhowtomaster kbinfo kbmt KB326902 KbMtth

��¤��

��Ӥѭ: ��«Ϳ��Ŵ��¤��ͧ Microsoft ᷹��繹ѡ�ŷ��繺ؤ�� Microsoft �պ��¹ѡ��к��Ŵ��¤�� س��ö��Ҷ֧��㹰ҹ��ͧ�� Ңͧ�س�ͧ ��ҧ�á�� Ŵ��¤��Ҩ�բ�ͺ��ͧ ��Ҩ�բ�ͼԴ��Ҵ㹤��Ѿ�� ٻẺ��ҡó� ��ǡѺ�óշ��ǵ�ҧ�ҵԾٴ�Դ��;ٴ��Ңͧ�س Microsoft ��ǹ�Ѻ�Դ�ͺ��ͤ��Ҵ��͹ ��Դ��Ҵ��ͤ��·��Դ�ҡ��ҼԴ��Ҵ ��͡��麷�Ţͧ�١�� Microsoft �ա�û�Ѻ��ا�Ϳ��Ŵ��¤��繻�Ш�

��仹��繩�Ѻ��ѧ��ɢͧ��:326902

(http://support.microsoft.com/kb/326902/en-us/ )

��Ѻ仴�ҹ�� | ��ʹ��

��ʹ��

��Ѻ仴�ҹ��

Select the product you need help with

acl ��С�� MetaACL ��Ѻ metabase ACL �Է��㹡��¹�ŧ

��Һ�˹�ҹ��

��ػ

��

��¡�á�äǺ��Ҷ֧

��

�Է��ҹ��

�� acl

acl ��ŵ��

iis 4.0

iis 5.0

IIS 6.0:

��ҧ�ԧ

�س��ѵ�

��Ѻ

Keywords:�

��ʹ��

��ź��

Select the product you need help with

acl ��С���� MetaACL ����Ѻ metabase ACL �Է���㹡������¹�ŧ

�����Һ�˹�ҹ��

��ػ

�������������

��¡�á�äǺ��������Ҷ֧

����

�Է�������ҹ��

������ acl

acl ����ŵ��������������

iis 4.0

iis 5.0

IIS 6.0:

��������ҧ�ԧ

�س���ѵ�

��Ѻ

Keywords:�

������ʹ���

����ź�����

acl ��С�� MetaACL ��Ѻ metabase ACL �Է��㹡��¹�ŧ

��Һ�˹�ҹ��

��

��¡�á�äǺ��Ҷ֧

��

�Է��ҹ��

�� acl

acl ��ŵ��

��ҧ�ԧ

�س��ѵ�

��ʹ��

��ź��