Re: User with blank password cannot login
From: Alun Jones [MSFT] (alunj_at_online.microsoft.com)
Date: 10/01/04
- Next message: Alun Jones [MSFT]: "Re: Windows 2003 Server limitation"
- Previous message: Alun Jones [MSFT]: "Re: ftp server permission"
- In reply to: Alan Hellier: "User with blank password cannot login"
- Messages sorted by: [ date ] [ thread ]
Date: Fri, 1 Oct 2004 16:01:01 -0700
"Alan Hellier" <Alan.Hellier@uhi.ac.uk> wrote in message
news:eLvHef8pEHA.596@TK2MSFTNGP11.phx.gbl...
> I've set up a Windows 2003 box with IIS 6 and i need to have a user with a
blank password to access the FTP site. For some reason which i can't figure
out, IIS 6 won't allow the user with the blank password to connect, but when
a password is added is does. This is really weird as the user with th blank
password logged in OK on my original W2K with IIS 5 box. Can anyone tell me
how to get this working?
This is by design - read the document at
http://www.microsoft.com/windowsserver2003/techinfo/overview/secinnovation.mspx
for a list of some of the security innovations that we have made in Windows
Server 2003 - one is that local users with blank passwords may not log on
remotely.
This can be changed by opening up the Local Security Policy, and under Local
Policies -> Security Options, you will find "Accounts: Limit local account
use of blank passwords to console logon only."
Needless to say, it's recommended that you keep the default setting, so that
non-anonymous access to your system is protected either by physical security
or a good password policy. If you have a need for public access to your
system, the "anonymous" FTP pseudo-user is a good method for doing this.
Alun.
~~~~
- Next message: Alun Jones [MSFT]: "Re: Windows 2003 Server limitation"
- Previous message: Alun Jones [MSFT]: "Re: ftp server permission"
- In reply to: Alan Hellier: "User with blank password cannot login"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
