Ï ëïãáñéáóìüò ðïõ ÷ñçóéìïðïéåßôáé ãéá áíþíõìç ðñüóâáóç ìðïñåß áðñïóäüêçôá êëåßäùìá óôéò õðçñåóßåò IIS 6.0 Þ óôéò õðçñåóßåò IIS 5.0

Óôï Microsoft Internet Information Services (IIS) 6.0 Þ óôïí Microsoft Internet Information Services (IIS) 5.0, ï ëïãáñéáóìüò ðïõ ÷ñçóéìïðïéåßôáé ãéá áíþíõìç ðñüóâáóç ìðïñåß íá åßíáé áðñïóäüêçôá êëåéäùìÝíïò. ÅðéðëÝïí, åíäÝ÷åôáé íá êáôáãñáöåß Ýíá Þ ðåñéóóüôåñá óõìâÜíôá ðáñüìïéá ìå ôï áêüëïõèï óôï áñ÷åßï êáôáãñáöÞò áóöáëåßáò:

Ôýðïò óõìâÜíôïò: Áðïôõ÷çìÝíïò Ýëåã÷ïò
ÐñïÝëåõóç óõìâÜíôïò: áóöÜëåéá
Êáôçãïñßá óõìâÜíôïò: Óýíäåóç/áðïóýíäåóç
Ôï Áíáãíùñéóôéêü óõìâÜíôïò: 539
ÐåñéãñáöÞ:
Áðïôõ÷ßá óýíäåóçò:
Áéôßá: ÊëåéäùìÝíïò ëïãáñéáóìüò
¼íïìá ÷ñÞóôç (User name):, UserName
ÔÏÌÅÁÓ:ÔÏÌÅÁÓ
Óýíäåóç ôïõ ôýðïõ: 2
Ç óýíäåóç ôçò äéáäéêáóßáò: ïé õðçñåóßåò IIS
Ôï ðáêÝôï åëÝã÷ïõ ôáõôüôçôáò: MICROSOFT_AUTHENTICATION_PACKAGE_V1_0

Ôýðïò óõìâÜíôïò: Áðïôõ÷çìÝíïò Ýëåã÷ïò
ÐñïÝëåõóç óõìâÜíôïò: áóöÜëåéá
Êáôçãïñßá óõìâÜíôïò: Ëïãáñéáóìüò óýíäåóçò
Ôï Áíáãíùñéóôéêü óõìâÜíôïò: 681
ÐåñéãñáöÞ:
Ç óýíäåóç óå ëïãáñéáóìü:, UserNameáðü: MICROSOFT_AUTHENTICATION_PACKAGE_V1_0 áðü ôï óôáèìü åñãáóßáò:computerNameÁðïôõ÷ßá. Ï êùäéêüò óöÜëìáôïò Þôáí: 3221226036

Ôýðïò óõìâÜíôïò: ðñïåéäïðïßçóç
ÐñïÝëåõóç óõìâÜíôïò: W3SVC
Êáôçãïñßá óõìâÜíôïò: êáìßá
Ôï Áíáãíùñéóôéêü óõìâÜíôïò: 100
ÐåñéãñáöÞ:
Ï äéáêïìéóôÞò äåí Þôáí äõíáôü íá óõíäåèåß óôï ëïãáñéáóìü ôùí Windows NT 'useraccount' ëüãù ìå ôï áêüëïõèï óöÜëìá: Ç áíáöåñüìåíç ëïãáñéáóìïý áõôÞí ôç óôéãìÞ åßíáé êëåéäùìÝíïò êáé äåí ìðïñåß íá êáôáãñáöåß óå

ÓÇÌÅÉÙÓÅÉÓ

• , UserNameåßíáé Ýíá óýìâïëï êñÜôçóçò èÝóçò ãéá ôï üíïìá ÷ñÞóôç.
• ÔÏÌÅÁÓåßíáé Ýíá óýìâïëï êñÜôçóçò èÝóçò ãéá ôï üíïìá ôïìÝá.
• computerNameåßíáé Ýíá óýìâïëï êñÜôçóçò èÝóçò ãéá ôï üíïìá ôïõ õðïëïãéóôÞ.
• Useraccountåßíáé Ýíá óýìâïëï êñÜôçóçò èÝóçò ãéá ôï ëïãáñéáóìü ÷ñÞóôç óôçí õðçñåóßá êáôáëüãïõ Active Directory Þ óå ôïðéêïýò ÷ñÞóôåò êáé ïìÜäåò.

Áõôü ôï æÞôçìá ìðïñåß íá ðñïêýøåé åÜí éó÷ýåé ìßá Þ ðåñéóóüôåñåò áðü ôéò áêüëïõèåò óõíèÞêåò:

• Ôï áñ÷åßï êáôáãñáöÞò áóöáëåßáò åßíáé ðëÞñåò êáé ôï áêüëïõèï êëåéäß ìçôñþïõ Ý÷åé ïñéóôåß óå ìéá åóöáëìÝíç ôéìÞ:
  HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa\CrashOnAuditFail
• Ï ëïãáñéáóìüò ðïõ ÷ñçóéìïðïéåßôáé ãéá áíþíõìç ðñüóâáóç äåí Ý÷åé ôá äéêáéþìáôá ðïõ áðáéôïýíôáé ãéá ôçí ðñüóâáóç óôçí ôïðïèåóßá Web.
• Ï êùäéêüò ðñüóâáóçò ãéá ôï ëïãáñéáóìü ðïõ ÷ñçóéìïðïéåßôáé ãéá áíþíõìç ðñüóâáóç óôéò õðçñåóßåò IIS äåí åßíáé óõã÷ñïíéóìÝíç ìå ôïí êùäéêü ðñüóâáóçò ãéá ôï ëïãáñéáóìü óôçí õðçñåóßá êáôáëüãïõ Active Directory Þ óå ôïðéêïýò ÷ñÞóôåò êáé ïìÜäåò.
• Ï ëïãáñéáóìüò ðïõ ÷ñçóéìïðïéåßôáé ãéá áíþíõìç ðñüóâáóç Ý÷åé äéáöïñåôéêü êùäéêü ðñüóâáóçò óå ìéá Üëëç éäéüôçôá ìåôá-âÜóçò ôùí õðçñåóéþí IIS.

Ãéá íá åðéëýóåôå áõôü ôï æÞôçìá, ÷ñçóéìïðïéÞóôå ìßá áðü ôéò áêüëïõèåò ìåèüäïõò.

ÌÝèïäïò 1: ÅðáëÞèåõóç ôùí ñõèìßóåùí ìçôñþïõ

Âåâáéùèåßôå üôé ôï áñ÷åßï êáôáãñáöÞò áóöáëåßáò äåí åßíáé ðëÞñçò. ÅðéðëÝïí, âåâáéùèåßôå üôé Ý÷åé ïñéóôåß ôï áêüëïõèï êëåéäß ìçôñþïõ ãéá ôç óùóôÞ ôéìÞ:Ãéá ðåñéóóüôåñåò ðëçñïöïñßåò ó÷åôéêÜ ìå áõôÞí ôç äéáäéêáóßá, êÜíôå êëéê óôïí áñéèìü ôïõ Üñèñïõ ðáñáêÜôù, ãéá íá ðñïâÜëåôå ôï Üñèñï ôçò ÃíùóéáêÞò ÂÜóçò ôçò Microsoft (Knowledge Base):

ÌÝèïäïò 2: ÅðáëÞèåõóç ôùí äéêáéùìÜôùí

Âåâáéùèåßôå üôé ï ëïãáñéáóìüò ðïõ ÷ñçóéìïðïéåßôáé ãéá áíþíõìç ðñüóâáóç Ý÷åé ôá äéêáéþìáôá ðïõ áðáéôïýíôáé ãéá ôçí ðñüóâáóç óôçí ôïðïèåóßá Web. Ãéá íá ôï êÜíåôå áõôü, ÷ñçóéìïðïéÞóôå ôï åñãáëåßï Ýêäïóç 1.0 ôïõ åëÝã÷ïõ ôáõôüôçôáò êáé äéáãíùóôéêÜ åëÝã÷ïõ ðñüóâáóçò (AuthDiag). Ãéá ðåñéóóüôåñåò ðëçñïöïñßåò ó÷åôéêÜ ìå ôï åñãáëåßï AuthDiag, åðéóêåöèåßôå ôçí áêüëïõèç ôïðïèåóßá ôçò Microsoft óôï Web:

ÌÝèïäïò 3: Óõã÷ñïíéóìüò ôùí êùäéêþí ðñüóâáóçò

Ãéá íá óõã÷ñïíßóåôå ôïí êùäéêü ðñüóâáóçò ãéá ôï ëïãáñéáóìü ðïõ ÷ñçóéìïðïéåßôáé ãéá áíþíõìç ðñüóâáóç óôéò õðçñåóßåò IIS ìå ôïí êùäéêü ðñüóâáóçò ãéá ôï ëïãáñéáóìü óôçí õðçñåóßá êáôáëüãïõ Active Directory Þ óå ôïðéêïýò ÷ñÞóôåò êáé ïìÜäåò.Ãéá ðåñéóóüôåñåò ðëçñïöïñßåò ó÷åôéêÜ ìå áõôÞí ôç äéáäéêáóßá, êÜíôå êëéê óôïí áñéèìü ôïõ Üñèñïõ ðáñáêÜôù, ãéá íá ðñïâÜëåôå ôï Üñèñï ôçò ÃíùóéáêÞò ÂÜóçò ôçò Microsoft (Knowledge Base):

Method 4: Verify that the password for the account is consistent in the IIS metabase

Verify that the account that is used for anonymous access does not exist with a different password in the IIS metabase. For example, the account that is used for anonymous access may be unexpectedly locked out if the following conditions are true:

• Ãéá íáUNCUserNameproperty uses the account that is used for anonymous access.
• This account is configured to use a different password.

To verify that the password for the account is consistent in the IIS metabase, search the IIS metabase for all instances of the account that is used for anonymous access. Verify that all instances of this account have the same password as the password that is configured in IIS.

To search the IIS metabase, follow these steps:

1. ÊÜíôå êëéêStartÊÜíôå êëéêÅêôÝëåóçTYPECmd, êáé óôç óõíÝ÷åéá êÜíôå êëéê óôï êïõìðßOk.
2. At the command prompt, use theCDcommand to change to the Inetpub\Adminscripts directory.
3. Óôç ãñáììÞ åíôïëþí, ðëçêôñïëïãÞóôåCscript Adsutil.vbs Enum_all > Metabase.txtêáé êáôüðéí ðáôÞóôå ôï ðëÞêôñï ENTER.
4. Óôç ãñáììÞ åíôïëþí, ðëçêôñïëïãÞóôå¸îïäïò (Exit)êáé êáôüðéí ðáôÞóôå ôï ðëÞêôñï ENTER.
5. Open the Metabase.txt file, and then search for all instances of the account that is used for anonymous access. Verify that all instances of this account have the same password as the password that is configured in IIS.

ÓÇÌÅÉÙÓÅÉÓ

• You can open the IIS 6.0 Metabase.xml file in Notepad.
• In IIS 6.0, you can use Metabase Explorer to view and to edit the IIS metabase. Metabase Explorer is available in the IIS 6.0 Resource Kit.
• In IIS 5.0, you can use the MetaEdit tool to view and to edit the IIS metabase. However, the MetaEdit tool is not a supported tool.

Method 5: Create a new user account

Create a new user account. Then, configure IIS to use the new user account for anonymous access.

ÓÇÌÅÉÙÓÇYou must grant the new user account the required NTFS permissions and user rights.

For more information about how to troubleshoot account lockouts, visit the following Microsoft TechNet Web site:For more information about how to grant the required NTFS permissions and user rights for an IIS 5.0 Web server, click the following article number to view the article in the Microsoft Knowledge Base:For more information about the IIS Resource Kit, click the following article number to view the article in the Microsoft Knowledge Base: