Hi
I have setup FTP service on an W2K Server with SP2. I have enabled anonymous access and also "only allow anonymous" access check box. The default user name IUSR_machinename and I have ticked the "allow IIS to control password".
No IP address is banned.
Now whenever someone tried to connect to the FTP server. Either they are prompted for a username and password. Entering anonymous and e-mail address is no good. Or they are promted with "no access" right away even before asking for a username and password.
Internet sharing is provided through W2K's NAT. I have enabled the "special ports". Mapping the public address port 20, 21 to the private address of the FTP server.
From a workstation on the LAN I can connect to the FTP through the private address and everything works. I am suspecting that it's because I am logged in and the FTP server simply too my credentials. I am logged in as a normal user with "print operator" access (to enable me to log onto the Domain Controller).
The FTP server is also a Domain Controller, DNS, DHCP, NAT server. I am suspecting that because the IUSER_machinename account don't have access to log in locally on the DC so that's why people are getting prompted for username / password?
How do I go about assigning IUSER_machinename access to log in locally? What is the security implication on the DC in giving such access?
Thank you in advance.
I have setup FTP service on an W2K Server with SP2. I have enabled anonymous access and also "only allow anonymous" access check box. The default user name IUSR_machinename and I have ticked the "allow IIS to control password".
No IP address is banned.
Now whenever someone tried to connect to the FTP server. Either they are prompted for a username and password. Entering anonymous and e-mail address is no good. Or they are promted with "no access" right away even before asking for a username and password.
Internet sharing is provided through W2K's NAT. I have enabled the "special ports". Mapping the public address port 20, 21 to the private address of the FTP server.
From a workstation on the LAN I can connect to the FTP through the private address and everything works. I am suspecting that it's because I am logged in and the FTP server simply too my credentials. I am logged in as a normal user with "print operator" access (to enable me to log onto the Domain Controller).
The FTP server is also a Domain Controller, DNS, DHCP, NAT server. I am suspecting that because the IUSER_machinename account don't have access to log in locally on the DC so that's why people are getting prompted for username / password?
How do I go about assigning IUSER_machinename access to log in locally? What is the security implication on the DC in giving such access?
Thank you in advance.
