Two weeks ago two sets of my IUSR & IWAM accounts decided
to restrict themselves to logon to but one computer and to
allow logon during a certain set of hours.

The computer they are configured to logon to does not
exist in my domain. The hours the accounts are permitted
to logon to are the normal 8 to 5.

In an attempt to find where the problem lies, I stopped
the WWW & IISAdmin services, deleted the accounts, waited
twenty minutes and then started the WWW service and the
IISAdmin service.

As expected the accounts were recreated. However they were
recreated with the same restrictions. They could only
access the one noexistant computer and only during normal
business hours.

Has anyone out there seen this kind of behavior before?

Any help/advice/input/suggestions would be appreciated.

Thank You,

Mike

Is this a domain environment? If so, have your admins check any recent GPOs
created, to see if there are restrictions in those.
Also, check your local security policy.

You can use gpresult to see what polices are being applied

Cheers
Ken

[quoted text, click to view]
: Two weeks ago two sets of my IUSR & IWAM accounts decided
: to restrict themselves to logon to but one computer and to
: allow logon during a certain set of hours.
:
: The computer they are configured to logon to does not
: exist in my domain. The hours the accounts are permitted
: to logon to are the normal 8 to 5.
:
: In an attempt to find where the problem lies, I stopped
: the WWW & IISAdmin services, deleted the accounts, waited
: twenty minutes and then started the WWW service and the
: IISAdmin service.
:
: As expected the accounts were recreated. However they were
: recreated with the same restrictions. They could only
: access the one noexistant computer and only during normal
: business hours.
:
: Has anyone out there seen this kind of behavior before?
:
: Any help/advice/input/suggestions would be appreciated.
:
: Thank You,
:
: Mike
: