Home > General > Error:80072020


But making the user an administrator is a very bad idea for security reasons. To start viewing messages, select the forum that you want to visit from the selection below. Any assistance and guidance will be great! In the To field, type your recipient's fax number @efaxsend.com.

But that doesn't solve the problem. You canuse admin credentials but only if AD ins on the IIS server. Any help with why this error is occurring and how it can be resolved, will be most welcome please. Notice that when you run the web site under domain credentials with rights to AD that you can now easily access AD, This is because the account that is asking is

Here is my code: <% Dim sLogonUser : sLogonUser = Request.ServerVariables("Logon_User") Dim sDomain : sDomain = Mid(sLogonUser, 1, Instr(1, sLogonUser, "\") - 1) Dim sLogonName : sLogonName = Mid(sLogonUser, Instr(1, sLogonUser, PLease tell us why you absolutely have to do this this way. The account you are running under must have delegation privileges as well as the server that is running the wen site.

I saved it as default.asp. Join UsClose Welcome ! IIS 6 has never been good at this out-of-the-box. The problem is with the IIS Anonymous User IUSR_ServerName account.

Win2000 with IIS enabled. Download your free Network Device Monitor Author: Guy Thomas Copyright © 1999-2016 Computer Performance LTD All rights reserved. Most of them are written in ASP. The thing I don't understand is when a user that is member of the administrator-group tries to access the site gets this error-message also. 0 Message Author Comment by:I-eye2006-02-16 Comment

My suggestion is that It's a permissions problem, if possible, try running the script on the very server and not an XP machine. Icon Legend and Permission New Messages No New Messages Hot Topic w/ New Messages Hot Topic w/o New Messages Locked w/ New Messages Locked w/o New Messages Read Message Post New Adding SPNs for the IIS webserver and the domain account running the application pool then setting the service account to be trusted for kerberos authentication fixed the issue. Also, ten 'how to...' sections, with screen shots showing which menus to use.

Johnny Sandaire DCS, PMP, MCAD Monday, July 18, 2011 8:28 PM Reply | Quote 0 Sign in to vote If the users are already in AD then why won't you use We do trhis on many sites in ASP and ASP.NET to allow users to change their personal inforation such as hoe address and phone number. By joining you are opting in to receive e-mail. jv Monday, July 18, 2011 8:59 PM Reply | Quote Microsoft is conducting an online survey to understand your opinion of the Technet Web site.

Suggested Solutions Title # Comments Views Activity WSUS unapproved 3 70 152d How to allow only 40 users to run .exe for a particular program\ 30 computers\ or user basis 24 I suspect that your issue may be that you are NOT clearing the anonymous box when settng integrated security or that y ou are running on SBS and have failed to YOu can use Integrated to detect teh calling user and get active dir or you can set teh web site to use anonymous and it will return the web site account I assume that is not the case here.

You may have to register before you can post: click the register link above to proceed. Join the community of 500,000 technology professionals and ask your questions. The problem i see is that iUSR_Servername is the local to the webserver and its not in AD Any help would be great Thanks Quick Navigation Classic ASP Top Site Areas jv Monday, July 18, 2011 3:07 PM Reply | Quote 0 Sign in to vote Hi Jv, Please take a look at these links: http://msdn.microsoft.com/en-us/library/aa706065(v=vs.85).aspx http://blogs.technet.com/b/heyscriptingguy/archive/2004/12/13/how-can-i-run-a-script-under-alternate-credentials.aspx This seems to be the

You can now find them here. When I run the Code then, it returns the Domain Account information, which is not what I am looking for. Give something back?

Connect with top rated Experts 14 Experts available now in Live!

I haven't run W2K for a few year5s with IIS although I have one client with a few systems. We are running on an intranet; this Web site is not open to the Internet; so, the users who are using it already have read access to the AD forest; so Is there any way to get this code to work without forcing users to log in when they access the ASP page? http://technet.microsoft.com/en-us/library/cc754628(v=ws.10).aspx http://www.adopenstatic.com/cs/blogs/ken/archive/2007/07/19/8460.aspx Steve Schofield Windows Server MVP - IIS http://iislogs.com/steveschofield http://www.IISLogs.com Log archival solution Install, Configure, Forget ‹ Previous Thread|Next Thread › This site is managed for Microsoft by Neudesic, LLC.

Privacy Policy Site Map Support Terms of Use Login with LinkedIN Or Log In Locally Email Password Remember Me Forgot Password?Register ENGINEERING.com Eng-Tips Forums Tek-Tips Forums Search Posts Find A Related 0Active Directory and NTLM Authentication4Classic ASP Impersonation problem on IIS7 Windows 2008 server1SAP, IIS and SSO - Kerberos SSPI not usable with this User account1ASP Classic Active Directory Autologin without jv Edited by jrv Saturday, July 16, 2011 4:59 PM Saturday, July 16, 2011 4:32 PM Reply | Quote 0 Sign in to vote Ok guys - as promised I am This works fine in anenvironment such as Windows Desktops or if you execute it on theserver itself - it often fails when run in a web environment.What you need to do

Line 11 is Set oUser = GetObject("LDAP://" & strUserDN) I have search the internet for error number '80072020' but cant find anything that will fix my problem Can anyone help Thanks Set objUser = GetObject("LDAP://" + userDN) ' This is where it fails for a lack of permission If Err.Number = E_ADS_PROPERTY_NOT_FOUND Then Response.Write("The memberOf attribute is not set.") Else ' It Here is how to overcome this issue. Take the guess work out of which WMI counters to use for applications like Microsoft Active Directory, SQL or Exchange Server.

Close this window and log in. That allowed me the ability to provide a set of credentials to AD that it recognizes, instead of the default IUSR_MACHINENAME that IIS passes along the GetOBject Call to AD. jv Monday, July 18, 2011 3:33 PM Reply | Quote 0 Sign in to vote Jv, I do know about ASP.NET, but, in this case, I want to use godd-old ASP It is an issue of delegation.

The code I have works using VBscript to search for the user in AD and grab their group memberships. Regards, Dr. Fortunately, SolarWinds have created the WMI Monitor so that you can examine these gems of performance information for free. However, when I demote the IIS Settings to Basic Authentication only, which forces me to login through IIS, the code succeeds.

In IIS7 and later teher are facilities for doing what youare tying to do but I believe they canonly be imlpemented under ASP.NET where we can store passwords securely. The Cause of Code 80072020 Either the person running the script does not have permissions, or you are running the script from an XP workstation rather than the server itself.