InTech
Joined: 05 Apr 2006
Posts: 1
|
 Posted:
Wed Apr 05, 2006 7:28 pm Post subject:
DCPromo disabled ACLs on IIS |
|
|
Networking student who recently setup a small network from which to give me a hands on environment to learn and experiment with WIN2K Server.
Previously had 2 boxes. 1 to run IIS, AD and DNS. The other to run as a separate SQL server. Finally aquired the funds to add a stand alone Domain Controller and DNS. Ran dcpromo on the new box and the transfer from my old DC went flawlessly. Ran dcpromo on the old box to remove AD from the webserver box and all went well.
As expected, the only thing I had to reset on the webserver box were the local admin usernames. All the ACLs and IPSec policies all remained intact.
So My NEW setup includes:
Router: Forwards port 80 to webserver box
Box 1 - Domain Controller/DNS Server
Box 2 - Web Server(IIS 5)
Box 3 - SQL server
My Problem:
When accessing my website from outside my network (as an average website visitor) it now prompts the visitor for a username and password. As seen in my ACL lists, and IPSec policy, nothing was changed when I demoted the webserver box.
I did notice, in my webserver root, it did add 2 new users:
_Web Anonymous Users
_Web Applications
If I enter a valid network username and password, it will let me view my website.
Is there something I missed when I added the new Domain Controller? Is the old Internet Guest Account(I_USER...) no longer valid or do the webserver requests now go through AD in my new Domain Controller even though my router specifically forwards port 80 requests to my webserver box?
I've tried everything with my ACLS to remedy this problem...
My gratitude ahead of time for your help!
__________________
Forever Grateful, |
|
FAQ
Memberlist
Register
Profile
Log in to check your private messages
Log in
