RE: http://companyweb/

Dear John,

Since my colleague Jenny is taking leave today, I jump into this thread.

Each time after we finish the CEICW Wizard, we will be prompted by a window
indicates that "Password policies have not been enabled on the network. It
is recommended that all user accounts be protected by strong passwords. Do
you want to enable password policies now?" and you will have the option for
"Yes" or "No". Since you don't receive this page on your SBS machine, may I
know if you have already enabled it before?

As I know, reinstalling the Intranet Component will not affect other
components such as ISA Server 2004. What we need to do after the
reinstallation is to simply rerun the CEICW Wizard:

825763 How to configure Internet access in Windows Small Business Server
2003
http://support.microsoft.com/?id=825763

If the issue still persists after we reinstall the Intranet Component, we
may need to analysis the ISA log/info to see if the traffic was denied by
the ISA Server. May I know if the error you received when accessing
companyweb is still the error 403?

Before doing so, please double check if the client has been configured as
Web Proxy client.

Please open IE on the client computer, click Tools->Internet
Options->Connections->LAN Settings. On the Local Area Network (LAN)
Settings box, please ensure the proxy is enabled and the "Bypass proxy
server for local addresses" is not enabled.

And then, please help to gather the ISA Info:

1) Download the file from the following URL:

http://www.isatools.org/isainfo/ISAInfo.zip

2) Extract all files to a folder on ISA server.
3) Double click Isainfo.js. This will generate 2 files
ISAInfo2004-<computer-name>.log and ISAInfo2004-<computer-name>.xml in the
current folder.
4) Please send these files to me at v-edtian@xxxxxxxxxxxxx (You can also
send the copy to my colleague v-yanniw@xxxxxxxxxxxxx so that she can
continue to work on this issue with you when she comes back)

Please also help to gather the ISA logs:

1) Schedule a down time.

2) Open ISA 2004 management console.

3) Expand the server node and highlight 'Monitoring'.

4) In the right pane, switch to the 'Logging' tab, make sure the 'Task
Pane' is showed there.

5) In the 'Task Pane', click 'Configure Firewall Logging' under 'Logging
Tasks', and then switch the 'log storage format' from 'MSDE database'
(default) to 'File'.

6) Switch to the 'Fields' tab, click 'Select All', and then click OK.

7) In the 'Task Pane', click 'Configure Web Proxy Logging' under 'Logging
Tasks', and then switch the 'log storage format' from 'MSDE database'
(default) to 'File'.

8) Switch to the 'Fields' tab, click 'Select All', and then click OK.

9) Click 'Apply' to save changes and update the configuration.

10) Temporarily disable the Firewall service. To do that, please click
Monitoring | Services tab, and then right click 'Microsoft Firewall' to
choose 'Stop'.

11) Clear the current existing W3C logs. To do that, go to the log saving
directory and clean any existing .W3C logs. By default, the logs will be
saved to 'C:\Program Files\Microsoft ISA Server\ISALogs'. (Some MDF may not
be able to deleted, that's normal.) You may backup them first and then
delete them.

12) Go back to the ISA 2004 management console, and then Start the stopped
'Microsoft Firewall' service.

13) Reproduce the problem, stop the service, and then gather the resulting
W3C files to me for analysis.

14) Please also let me know the IP address of the testing clients so that I
can filter the data.

3. Please open the IIS management console, navigate to the companyweb
virtual directory, right click it and click Properties. Please click
Advanced button and then capture a screenshot. Then go to the Directory
Security tab and click the first Edit button, then capture a screenshot.
Please send these two screenshots to me for further analysis.

Thank you for your time and patience on this issue. Please let me know if
you have any questions or concerns.

Have a nice day!

Best Regards
Edward Tian(MSFT)
Microsoft CSS Online Newsgroup Support

Get Secure! - www.microsoft.com/security
======================================================
This newsgroup only focuses on SBS technical issues. If you have issues
regarding other Microsoft products, you'd better post in the corresponding
newsgroups so that they can be resolved in an efficient and timely manner.
You can locate the newsgroup here:
http://www.microsoft.com/communities/newsgroups/en-us/default.aspx

When opening a new thread via the web interface, we recommend you check the
"Notify me of replies" box to receive e-mail notifications when there are
any updates in your thread. When responding to posts via your newsreader,
please "Reply to Group" so that others may learn and benefit from your
issue.

Microsoft engineers can only focus on one issue per thread. Although we
provide other information for your reference, we recommend you post
different incidents in different threads to keep the thread clean. In doing
so, it will ensure your issues are resolved in a timely manner.

For urgent issues, you may want to contact Microsoft CSS directly. Please
check http://support.microsoft.com for regional support phone numbers.

Any input or comments in this thread are highly appreciated.

======================================================

PLEASE NOTE the newsgroup SECURE CODE and PASSWORD will be updated at 9:00
AM PST, February 14, 2006. Please complete a re-registration process by
entering the secure code mmpng2006 when prompted. Once you have entered the
secure code mmpng2006, you will be able to update your profile and access
the partner newsgroups.

======================================================

When responding to posts, please "Reply to Group" via your newsreader so
that others may learn and benefit from this issue.

======================================================
This posting is provided "AS IS" with no warranties, and confers no rights.

--------------------
| Thread-Topic: http://companyweb/
| thread-index: AcYn1W7r+Sma2bxJQE6/wwolVx4cXw==
| X-WBNR-Posting-Host: 81.178.54.50
| From: "=?Utf-8?B?RmVsdGhhbWpvaG4=?="
<Felthamjohn@xxxxxxxxxxxxxxxxxxxxxxxxx>
| References: <F6312CA1-07AD-4394-A41F-C6CF30B4AA53@xxxxxxxxxxxxx>
<gkRNMQAIGHA.1236@xxxxxxxxxxxxxxxxxxxxx>
<943D374E-23C2-49A0-B372-D59AC595F06A@xxxxxxxxxxxxx>
<auzFIhmIGHA.3152@xxxxxxxxxxxxxxxxxxxxx>
<E75BDFD3-F3FF-4A78-B70C-ECE498FC79E1@xxxxxxxxxxxxx>
<Wu96J6WJGHA.3944@xxxxxxxxxxxxxxxxxxxxx>
<QaMVIuiJGHA.3680@xxxxxxxxxxxxxxxxxxxxx>
| Subject: RE: http://companyweb/
| Date: Thu, 2 Feb 2006 00:48:26 -0800
| Lines: 103
| Message-ID: <05821873-B0C9-41AA-8F9C-49E0C2672052@xxxxxxxxxxxxx>
| MIME-Version: 1.0
| Content-Type: text/plain;
| charset="Utf-8"
| Content-Transfer-Encoding: 7bit
| X-Newsreader: Microsoft CDO for Windows 2000
| Content-Class: urn:content-classes:message
| Importance: normal
| Priority: normal
| X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.0
| Newsgroups: microsoft.public.windows.server.sbs
| NNTP-Posting-Host: TK2MSFTNGXA03.phx.gbl 10.40.2.250
| Path: TK2MSFTNGXA02.phx.gbl!TK2MSFTNGXA03.phx.gbl
| Xref: TK2MSFTNGXA02.phx.gbl microsoft.public.windows.server.sbs:241302
| X-Tomcat-NG: microsoft.public.windows.server.sbs
|
| Hi Cliff,
|
| Have tried everything up to "reinstall the Intranet componet" with no
sucess
| unsure about "enbled the password policies when running CEICW" where is
this
| done ran wizward but could'nt see screen about passwords.
|
| Will "reinstall the Intranet componet" affect ISA2004 server or any
other
| sub componets of the original installation of SBS
|
|
| ""Cliff Zhang [MSFT]"" wrote:
|
| > Dear Customer,
| >
| > Thank you for your email! This is Cliff, the backup of Jenny during her
leave.
| >
| > Regarding the issue, did you reinstall the Intranet component before
the issue occurred? If so, please download and install the following update
and check if the site
| > works:
| >
| >
http://www.microsoft.com/downloads/details.aspx?FamilyId=CB7E90A1-DE9D-4A83-
85F8-951E9F055BF0&displaylang=en
| >
| > I would also like to check with you if you have ? Enabling the password
policies will enable password aging for all
| > enabled users. The users that have authenticated on the domain before
the policies were enabled and have not yet performed a logoff and logon to
the domain, and not
| > yet received the request to update and change their password. When IIS
6.0 passes the users credentials for the attempt at accessing the
CompanyWeb the domain
| > controller, the domain controller policy identifies that password aging
has been enforced and will not accept the users credentials.
| >
| > If this is the case, the resolution is to have the user logoff the
domain, then attempt to logon, and when prompted to change passwords, do
so, in order to satisfy the
| > password policy enforcement of the domain controller. On the next
domain logon, the CompanyWeb will again be available.
| >
| > If the issue still occurs, let's perform the following steps to
reinstall the Intranet componet:
| >
| > 1. Manually uninstall Sharepoint and MSDE using the following steps:
| >
| > - In Add/Remove programs
| >
| > a. Uninstall "Microsoft SQL Server Desktop Engine (SHAREPOINT)" from
Add or Remove Programs.
| >
| > b. Uninstall "Windows Sharepoint Services 2.0" from Add or Remove
Programs.
| >
| > - Delete Registry Keys
| >
| > a. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SmallBusinessServer\Intranet
| >
| > b. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft SQL Server\SHAREPOINT
| >
| > - Delete IIS Virtual Directory
| >
| > a. Delete SharePoint Central Administration (Do Not Delete Microsoft
SharePoint Administration. It belongs to FrontPage Server Extension).
| >
| > b. Delete Companyweb
| >
| > - Delete Application Pool
| >
| > In IIS Manager (inetmgr.exe), delete the stsadminapppool.
| >
| > - Delete the following folders
| >
| > a. C:\Program Files\Microsoft SQL Server\MSSQL$SHAREPOINT
| >
| > b. C:\Inetpub\companyweb
| >
| > 2. At a command prompt, run the following commands:
| >
| > ipconfig /flushdns
| >
| > iisreset
| >
| > 3. Reinstall the intranet component using SBS 2003 Integrated Setup and
check if companyweb works.
| >
| > Thank you for your time!
| >
| > Sincerely,
| >
| > Cliff Zhang
| > Microsoft Online Partner Support
| > MCSE 2000/2003
| >
| >
| > When responding to posts, please "Reply to Group" via your newsreader
so that others may learn and benefit from your issue.
| >
| > =====================================================
| >
| > Business-Critical Phone Support (BCPS) provides you with technical
phone support at no charge during critical LAN outages or "business down"
situations. This benefit is
| > available 24 hours a day, 7 days a week to all Microsoft technology
partners in the United States and Canada.
| >
| >
| > This and other support options are available here:
| >
| > BCPS:
https://partner.microsoft.com/US/technicalsupport/supportoverview/40010469
| >
| > Others:
https://partner.microsoft.com/US/technicalsupport/supportoverview/
| >
| >
| > If you are outside the United States, please visit our International
Support page:
http://support.microsoft.com/default.aspx?scid=%2finternational.aspx.
| >
| > =====================================================
| >
| > This posting is provided "AS IS" with no warranties, and confers no
rights.
| >
| >
| >
| >
| >
|

.

Loading