Event log access rights on Windows 2003

Discussion in 'Server Security' started by Crusty Applesniffer, Jun 25, 2004.

  1. Hello,

    I have a COM object which allows an asp page reading a user defined event
    log (the account used to access the event log is the connected user's one.)

    When I store the page on IIS on a W2000 server, I can use it whathever user
    account I use.
    But if I store the page on IIS on w Windows 2003 server I get on error
    (Access denied) when I open the asp page with a user that does not belong to
    Domain Admins group.

    I want to know if there is a difference (in a security point of view)
    between IIS on Windows 2003 and IIS on Windows 2000.

    Thank you.
     
    Crusty Applesniffer, Jun 25, 2004
    #1
    1. Advertisements

  2. Crusty Applesniffer

    Roger Abell Guest

    Yes, there is a great deal of difference between IIS 5 and 6
    in this regard. You might find advantage in examining some
    of the upgrade docs for IIS to see how the backend process
    model was rearchitected and is instanced in new accounts.
     
    Roger Abell, Jun 26, 2004
    #2
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.