传统的ASP页假冒NT AUTHORITY \\ ANONYMOUS登录 [英] Classic ASP page is impersonating NT AUTHORITY\ANONYMOUS LOGON
问题描述
我们有一个经典的ASP应用程序。我试图克隆它在同一服务器上,用IIS7的同一个实例,所以我们有一个开发版本。我复制的文件,和重复所有我可以在IIS管理器中找到的配置。
We have a classic ASP application. I'm trying to clone it on the same server, with the same instance of IIS7, so we have a dev version. I copied the files, and duplicated all of the configuration that I can find in IIS manager.
问题是DB访问。新副本使用相同的应用程序池老同一个连接字符串,但是当我创建 ADODB.Connection 和呼叫 conn.Open (STR)与同旧的连接字符串,调用抛出用户登录失败'NT AUTHORITY \\ ANONYMOUS登录。。
The problem is DB access. The new copy is using the same Application Pool as the old one and the same connection string, but when I create ADODB.Connection and call conn.Open(str) with the same old connection string, that call throws "Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'.".
这不是用户帐户的应用程序池使用,但似乎并不重要。
That is not the user account the application pool is using, but that seems not to matter.
"Provider=SQLOLEDB;Data Source=OURSVR;Initial Catalog=OURDB;Integrated Security=SSPI;"
所以:你如何强制经典ASP模仿比 NT AUTHORITY \\ ANONYMOUS登录其他的用户帐户?
推荐答案
匿名用户身份是最重要的。所以,你必须做出正确的。在这种情况下,应用程序池有我想要的应用程序使用的身份,但这个应用程序并没有真正使用它。
The Anonymous User Identity is what counts. So you have to make that correct. In this case, the application pool has the identity I want the application to use, but this application wasn't actually using it.
在IIS管理器中的IIS7,在树的应用左键点击,点击功能视图选项卡在中间窗格底部。
In IIS Manager for IIS7, left click on the application in the tree, and click the "Features View" tab at the bottom of the middle pane.
在IIS(我的组:选择区域,在下拉了在窗格顶部),找到身份验证(或正宗......,如果没有按列表视图吨有焦点)。
Under "IIS" (I've selected "Area" in the "Group by:" drop-down up top in that pane), find "Authentication" (or "Authentic...", if the listview doesn't have focus).
双击它。 匿名身份验证应启用(这是)。
Double click it. "Anonymous Authentication" should be enabled (it was).
右键点击匿名身份验证,然后选择编辑...从上下文菜单。
Right click "Anonymous Authentication" and select "Edit..." from the context menu.
更改匿名用户身份:从特定用户(IUSR),以应用程序池标识,然后单击确定。
Change "Anonymous user identity:" from "Specific user:" ("IUSR") to "Application pool identity" and click OK.
重新启动Web服务器。
Restart the web server.
这篇关于传统的ASP页假冒NT AUTHORITY \\ ANONYMOUS登录的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
