Application using IUSR_Anonymous -- iis security

Harkin Banks
10/27/2003 10:17:40 AM

We have internally developed apps running on our IIS 5.0 Intranet server.
These apps use the anonymous login to query AD for object resolution in
order to process security permissions. This worked great with W2K DCs. Since
we have upgraded to W2K3 DCs only, it has stopped working. My educated guess
it that this option is locked down in W2K3 and that is why it is no longer
functioning. I believe there is a reg key that can be modified to allow
anonymous access but I do not want this enabled. Is there another way that I
can re-enable this, possible via the DC group policy?

If more info is needed let me know.

Thanks.

Srikanth
10/28/2003 8:37:45 PM

The anonymous security context in IIS 6.0 is different from that of IIS 5.0.

To narrow down on the issue, switch to the IIS 5 isolation mode in IIS 6.0
to see if the behaviour of the apps is same as in IIS 5.0.
If they work fine, most likely the issue would be with IIS 6.0 security
context.
You may need check the requirements for anonymous for IIS 6.0 worker process
mode (default).

Further Information after these would help to move further.

-Srikanth.

[quoted text, click to view]

iis security : Application using IUSR_Anonymous