|
Home > Archive > IIS Server Security > August 2005 > Event ID 537 Digest Authentication
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Event ID 537 Digest Authentication
|
|
|
| I have been fighting this for a few days now, so any help would be
appreciated!!!!
I am using a Windows 2003 SP1 server to setup a new website that will
require authentication. I have the only authentication for that web site set
to be digest authentication. This machine is not a domain controller, and my
domain is Windows 2000. I do have the following configured:
Reversable encryption for user accounts
Subauthentication installed on IIS server
I have disabled the loopback check (even though I am doing an
http://computername/folder)
Realm is configured to my domain
Everytime I try to athentication, my security log shows an event id 537 for
the WDIGEST logon process. Browser (IE 6 SP1 latest and greatest patches)
gets a 401.1 error as well.
HELP!!!!
| |
| Ken Schaefer 2005-08-22, 8:49 pm |
| Hi,
I'm not familiar enough with Digest Authentication to know exactly what's
going wrong here, however:
a) Can you post all the details of the 537 event please?
b) After enabling "store passwords using reversible encryption" for the user
in question, did you reset their password? (so that the reversible version
is now stored?)
Cheers
Ken
--
IIS Blog: www.adopenstatic.com/cs/blogs/ken/
Web: www.adopenstatic.com
"Isaac" <Isaac@discussions.microsoft.com> wrote in message
news:F908C539-FA99-4B21-8360-92D4F3EA3246@microsoft.com...
:I have been fighting this for a few days now, so any help would be
: appreciated!!!!
:
: I am using a Windows 2003 SP1 server to setup a new website that will
: require authentication. I have the only authentication for that web site
set
: to be digest authentication. This machine is not a domain controller, and
my
: domain is Windows 2000. I do have the following configured:
:
: Reversable encryption for user accounts
: Subauthentication installed on IIS server
: I have disabled the loopback check (even though I am doing an
: http://computername/folder)
: Realm is configured to my domain
:
: Everytime I try to athentication, my security log shows an event id 537
for
: the WDIGEST logon process. Browser (IE 6 SP1 latest and greatest patches)
: gets a 401.1 error as well.
:
: HELP!!!!
| |
|
| Yes to your second question.
Event details:
Logon Failure:
Reason: An error occurred during logon
User Name: isaacftp
Domain: strategicinc.com
Logon Type: 3
Logon Process: WDIGEST
Authentication Package: WDigest
Workstation Name: -
Status code: 0xC000006D
Substatus code: 0xC00000FE
Caller User Name: -
Caller Domain: -
Caller Logon ID: -
Caller Process ID: -
Transited Services: -
Source Network Address: 10.16.16.56
Source Port: 1640
"Ken Schaefer" wrote:
> Hi,
>
> I'm not familiar enough with Digest Authentication to know exactly what's
> going wrong here, however:
>
> a) Can you post all the details of the 537 event please?
>
> b) After enabling "store passwords using reversible encryption" for the user
> in question, did you reset their password? (so that the reversible version
> is now stored?)
>
> Cheers
> Ken
>
> --
> IIS Blog: www.adopenstatic.com/cs/blogs/ken/
> Web: www.adopenstatic.com
>
>
> "Isaac" <Isaac@discussions.microsoft.com> wrote in message
> news:F908C539-FA99-4B21-8360-92D4F3EA3246@microsoft.com...
> :I have been fighting this for a few days now, so any help would be
> : appreciated!!!!
> :
> : I am using a Windows 2003 SP1 server to setup a new website that will
> : require authentication. I have the only authentication for that web site
> set
> : to be digest authentication. This machine is not a domain controller, and
> my
> : domain is Windows 2000. I do have the following configured:
> :
> : Reversable encryption for user accounts
> : Subauthentication installed on IIS server
> : I have disabled the loopback check (even though I am doing an
> : http://computername/folder)
> : Realm is configured to my domain
> :
> : Everytime I try to athentication, my security log shows an event id 537
> for
> : the WDIGEST logon process. Browser (IE 6 SP1 latest and greatest patches)
> : gets a 401.1 error as well.
> :
> : HELP!!!!
>
>
>
| |
| Ken Schaefer 2005-08-23, 2:48 am |
| Ouch:
0xC000006D =
STATUS_LOGON_FAILURE
The attempted logon is invalid. This is either due to a bad
username or authentication information.
0xC00000FE =
STATUS_NO_SUCH_PACKAGE
A specified authentication package is unknown.
Not really sure what the problem is. From your configuration information,
you didn't mention the following:
- are you running the worker process as LocalSystem?
- you have UseDigestSSP set to 0 (or not set at all) in the metabase for the
appropriate node?
Also, have you tried using AuthDiag (from the MS website) to see if there is
any other config that might need to be set? IIRC AuthDiag does some basic
config checking
Cheers
Ken
--
IIS Blog: www.adopenstatic.com/cs/blogs/ken/
Web: www.adopenstatic.com
"Isaac" <Isaac@discussions.microsoft.com> wrote in message
news:68B079B8-51AC-438A-88E8-6549FA5637BB@microsoft.com...
: Yes to your second question.
:
: Event details:
:
: Logon Failure:
: Reason: An error occurred during logon
: User Name: isaacftp
: Domain: strategicinc.com
: Logon Type: 3
: Logon Process: WDIGEST
: Authentication Package: WDigest
: Workstation Name: -
: Status code: 0xC000006D
: Substatus code: 0xC00000FE
: Caller User Name: -
: Caller Domain: -
: Caller Logon ID: -
: Caller Process ID: -
: Transited Services: -
: Source Network Address: 10.16.16.56
: Source Port: 1640
:
:
:
:
:
: "Ken Schaefer" wrote:
:
: > Hi,
: >
: > I'm not familiar enough with Digest Authentication to know exactly
what's
: > going wrong here, however:
: >
: > a) Can you post all the details of the 537 event please?
: >
: > b) After enabling "store passwords using reversible encryption" for the
user
: > in question, did you reset their password? (so that the reversible
version
: > is now stored?)
: >
: > Cheers
: > Ken
: >
: > --
: > IIS Blog: www.adopenstatic.com/cs/blogs/ken/
: > Web: www.adopenstatic.com
: >
: >
: > "Isaac" <Isaac@discussions.microsoft.com> wrote in message
: > news:F908C539-FA99-4B21-8360-92D4F3EA3246@microsoft.com...
: > :I have been fighting this for a few days now, so any help would be
: > : appreciated!!!!
: > :
: > : I am using a Windows 2003 SP1 server to setup a new website that will
: > : require authentication. I have the only authentication for that web
site
: > set
: > : to be digest authentication. This machine is not a domain controller,
and
: > my
: > : domain is Windows 2000. I do have the following configured:
: > :
: > : Reversable encryption for user accounts
: > : Subauthentication installed on IIS server
: > : I have disabled the loopback check (even though I am doing an
: > : http://computername/folder)
: > : Realm is configured to my domain
: > :
: > : Everytime I try to athentication, my security log shows an event id
537
: > for
: > : the WDIGEST logon process. Browser (IE 6 SP1 latest and greatest
patches)
: > : gets a 401.1 error as well.
: > :
: > : HELP!!!!
: >
: >
: >
| |
|
| I know the username and password validity is not the issue. I have also
tried this with my normal Windows account (the one I use to login or unlock
20 times a day), and I receive the same error. The package part is what I
was thinking, but I have no idea where to look.
I am running as local system, and I confirmed that the setting in question
is not set in the metabase. I tried using the Authdiag tool and actually had
some odd responses. When I ran it from the server itself, I was working
through remote desktop. When the tool launched the web site it would say
something like "Waiting for response from remote http". When the login
failed, the authdiag tool never received that failure information. However,
when I ran the tool from my PC, it did return information. Nothing I thought
was useful, though.
Isaac
"Ken Schaefer" wrote:
> Ouch:
>
> 0xC000006D =
> STATUS_LOGON_FAILURE
> The attempted logon is invalid. This is either due to a bad
> username or authentication information.
>
> 0xC00000FE =
> STATUS_NO_SUCH_PACKAGE
> A specified authentication package is unknown.
>
> Not really sure what the problem is. From your configuration information,
> you didn't mention the following:
> - are you running the worker process as LocalSystem?
> - you have UseDigestSSP set to 0 (or not set at all) in the metabase for the
> appropriate node?
>
> Also, have you tried using AuthDiag (from the MS website) to see if there is
> any other config that might need to be set? IIRC AuthDiag does some basic
> config checking
>
> Cheers
> Ken
>
> --
> IIS Blog: www.adopenstatic.com/cs/blogs/ken/
> Web: www.adopenstatic.com
>
>
> "Isaac" <Isaac@discussions.microsoft.com> wrote in message
> news:68B079B8-51AC-438A-88E8-6549FA5637BB@microsoft.com...
> : Yes to your second question.
> :
> : Event details:
> :
> : Logon Failure:
> : Reason: An error occurred during logon
> : User Name: isaacftp
> : Domain: strategicinc.com
> : Logon Type: 3
> : Logon Process: WDIGEST
> : Authentication Package: WDigest
> : Workstation Name: -
> : Status code: 0xC000006D
> : Substatus code: 0xC00000FE
> : Caller User Name: -
> : Caller Domain: -
> : Caller Logon ID: -
> : Caller Process ID: -
> : Transited Services: -
> : Source Network Address: 10.16.16.56
> : Source Port: 1640
> :
> :
> :
> :
> :
> : "Ken Schaefer" wrote:
> :
> : > Hi,
> : >
> : > I'm not familiar enough with Digest Authentication to know exactly
> what's
> : > going wrong here, however:
> : >
> : > a) Can you post all the details of the 537 event please?
> : >
> : > b) After enabling "store passwords using reversible encryption" for the
> user
> : > in question, did you reset their password? (so that the reversible
> version
> : > is now stored?)
> : >
> : > Cheers
> : > Ken
> : >
> : > --
> : > IIS Blog: www.adopenstatic.com/cs/blogs/ken/
> : > Web: www.adopenstatic.com
> : >
> : >
> : > "Isaac" <Isaac@discussions.microsoft.com> wrote in message
> : > news:F908C539-FA99-4B21-8360-92D4F3EA3246@microsoft.com...
> : > :I have been fighting this for a few days now, so any help would be
> : > : appreciated!!!!
> : > :
> : > : I am using a Windows 2003 SP1 server to setup a new website that will
> : > : require authentication. I have the only authentication for that web
> site
> : > set
> : > : to be digest authentication. This machine is not a domain controller,
> and
> : > my
> : > : domain is Windows 2000. I do have the following configured:
> : > :
> : > : Reversable encryption for user accounts
> : > : Subauthentication installed on IIS server
> : > : I have disabled the loopback check (even though I am doing an
> : > : http://computername/folder)
> : > : Realm is configured to my domain
> : > :
> : > : Everytime I try to athentication, my security log shows an event id
> 537
> : > for
> : > : the WDIGEST logon process. Browser (IE 6 SP1 latest and greatest
> patches)
> : > : gets a 401.1 error as well.
> : > :
> : > : HELP!!!!
> : >
> : >
> : >
>
>
>
|
|
|
|
|