Microsoft Knowledge Base Article
This article contents is Microsoft Copyrighted material.
©2005-©2007 Microsoft Corporation. All rights reserved.
Terms
of Use |
Trademarks
Article ID: 912156 - Last Review: December 3, 2007 - Revision: 1.3
IIS 5.0 or IIS 6.0-based Web servers that have Microsoft Operations Manager (MOM) 2005 and the IIS Management Pack installed may randomly add IP address and domain name restrictions to all Web sites on the local computer
Microsoft Internet Information Services (IIS) 5.0 or IIS 6.0-based Web servers that have Microsoft Operations Manager (MOM) 2005 and the IIS Management Pack installed randomly add IP address and domain name restrictions to all Web sites on the local computer.
This problem occurs because the IIS Management Pack
Security: Error 401: "Access Denied" Error - Alert rule is enabled on the MOM 2005 server.
To resolve this problem, download the latest version of the IIS Management Pack. To do this, visit the following Microsoft Web site:
To work around this problem, disable the
Security: Error 401: "Access Denied" Error - Alert rule. To do this, follow these steps:
- In the MOM Administrator console, expand Microsoft Operations Manager (Site), expand Management Packs, expand Rule Groups, expand Microsoft Windows Internet Information Services, expand Internet Information Services version, expand Core Services, expand World Wide Web Publishing Service, and then click Event Rules.
- In the details pane, right-click Security: Error 401: "Access Denied" Error - Alert, and then click Properties.
- Click the General tab, click to select the This rule is disabled check box, and then click Apply.
- Right-click Security: Error 401: "Access Denied" - Event Consolidation, and then click Properties.
- On the General tab, select This rule is disabled, and then click Apply.
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
The following behavior occurs, in the order in which it is presented:
- The Security: Error 403: "Forbidden" Error - Alert rule or the Security: Error 401: "Access Denied" Error - Alert rule triggers the Automatic IP Deny Script.
- The Automatic IP Deny Script updates the IP Deny List
The
Security: Error 401: "Access Denied" Error - Alert rule has been removed from the publically available versions of the IIS Management Pack, and the
Security: Error 403: "Forbidden" Error - Alert rule was removed in Microsoft Operations Manager 2005 Service Pack 1 (SP1).
For more information about the IIS Management Pack, visit the following Microsoft Web site:
For more information about MOM 2005, visit the following Microsoft Web site:
APPLIES TO
- Microsoft Operations Manager (MOM) 2005
- Microsoft Internet Information Services 6.0
- Microsoft Internet Information Services 5.0
| kbbug kbprb kbtshoot KB912156 |
Community Feedback System
Very often, it takes hours to solve a problem. Very often, you've looked high
and low, and have tried a lot of solutions. When you finally found it, chances
are, it was because someone else helped you. Here's your chance to give back.
Use our community feedback tool to let others know what worked for you and what
didn't.
Please also understand that the community feedback system is not warranted to be
correct, it's simply a system that we've built to let people try and help each
other. If something in a feedback response doesn't make sense to you, or you're
not comfortable making changes that the feedback talks about (like registry
edits), please consult a professional.
Thank you for using kbAlertz.com Feedback System.
-- Scott Cate