Could you elaborate on this some? As I understand it the users' account setups should not affect operation of my COM servers as they should run under the ID I specified in DCOMCNFG. As far as I know we set up everything regarding security on the Win2K servers tha same as on the WinNT servers. Since the users come in over the web I do not expect remote access to be an issue here, but I am obviously missing something with regards to Win2K security.
Bill
>Is their account setup to allow remote access?
>Tracy
>
>>Scenario is Win2K Server, an
Intranet WC web app using
NON-anonymous access, I.e. Windows Integrated Authentication only.
>>
>>COM server is set up in DCOMCNFG to run under a Domain account which is also in the Administrator group on the PC with full rights to all applicable folders. When clicking a link attempts to invoke the COM server, it appears that Win2K is trying to use the user's ID to invoke the COM server instead of the ID set in DCOMCNFG.
>>
>>I.e. as soon as the attempt is made to invoke the COM server, the user is challenged for a userid, password and domain and fails with the infamous "HTTP 401.3 - Access denied by ACL on resource" error. This did not happen with the same app running on a WinNT4.0 server.
>>
>>Is there some setting(s) in Win2K that we are misisng here that will cause this problem?
>>
>>Thanks,
>>Bill
William A. Caton III
Software Engineer
MAXIMUS
Atlanta, Ga.