kdillardBBNPLANET.COM

• Next message: Paul B. Hill: "Re: (Fwd) Re: Win2000 and BIND GSS-TSIG Interoperability?"
• Previous message: Scott Morizot: "(Fwd) Re: Win2000 and BIND GSS-TSIG Interoperability?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

I think that me and my colleagues have uncovered a bug in the IIS 5.0
snap-in. Create a local group on the webserver. Open the IIS 5 snap-in and
select the properties for the default website. Select the 'Operators' tab.
Click the 'Add' button. Verify that the local account database is displayed.
The local group that you just created is not visible. If you type the
correct name of the new group you get an error message stating that the name
is invalid and cannot be found. You are also unable to add built-in accounts
such as Power Users, Administrators, and Users.

This behavior also occurs when you try to modify the Site Operators for the
FTP service, but everything works as expected when you manage the properties
of an SMTP virtual server. This problem appears on either stand-alone
servers or those that belong to a win2k domain. We are using build 2195 of
Windows 2000 Server. A reboot does not clear things up. If you select the
domain account database from the drop-down list than you are able to view
all accounts and groups, as you would expect.

This appears to be a problem with the snap-in's query of the account
database. We think that the query is incorrectly filtering out all but the
special system groups such as Interactive, Network, and Service. This kind
of filtering is supposed to happen in certain MMC snap-ins, but not in the
IIS 5.0 console.

Kurt Dillard
GTE Internetworking
Powered by BBN

• Next message: Paul B. Hill: "Re: (Fwd) Re: Win2000 and BIND GSS-TSIG Interoperability?"
• Previous message: Scott Morizot: "(Fwd) Re: Win2000 and BIND GSS-TSIG Interoperability?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]