Ask a Question related to ASP.NET Security, Design and Development.
-
Scott Zabolotzky #1
App can't write to EventLog on Windows Server 2003
I have an app that writes to a custom event log (which is
created at install time with a custom installer DLL). My app
writes just fine to this custom log when running on Windows
2000 Server but when I try to run it on Windows 2003 Server I
get "Access denied" errors.
I'm using impersonation in my app and if I log in with a
user account that is in the "Domain Admins" groups it will
work on 2003 as well.
What permissions do I need to modify to allow "Domain Users"
to be able to write to the EventLog from ASP.NET? Adding all
users to the "Domain Admins" group is not an option.
THanks...Scott
p.s. I tried changing my app to write to the Application log
rather than a custom log but the problem still occurs.
Scott Zabolotzky Guest
-
Windows 2000 Server/Windows Server 2003 Dual Boot
I have been asked to provide a dual boot server using both Windows 2000 Server and Windows Server 2003 Std Edt. Can anyone tell me whether this is... -
Error trying to write to the Application Log on a Windows 2003 server
What are your values at HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ EventLog\Application\CustomSD Note:- ... -
Exception manegement application block can't write to Windows server 2003
Hi, I have posted a similar question to ASP.Net newsgroup but I found the "EMAB, Impersonation and Event log" question here and decided to ask my... -
ASP COM object EventLog messages not showing up on Server 2003 Web Edition
I have an ASP (not ASP.Net) application which was migrated to Microsoft Windows Server 2003 Web Edition... the ASP application uses a COM object... -
Write permissions for ASPNET user on Windows 2003
I am deploying an application on a Windows 2003 server. This application needs to write files to a folder. On IIS 5 this worked fine by granting... -
Jim Cheshire [MSFT] #2 RE: App can't write to EventLog on Windows Server 2003
Scott,
You don't really need to alter any permissions. You just need to create
the event source. The location for that is:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\Eventlog
In there, you will have one key for Application, one for Security, and one
for System. If you are writing to an event source of "MyApp" in the
Application log, you would need to create a new key under Application
called MyApp. Once you do that, the application should work fine.
Jim Cheshire, MCSE, MCSD [MSFT]
ASP.NET
Developer Support
[email]jamesche@online.microsoft.com[/email]
This post is provided "AS-IS" with no warranties and confers no rights.
--------------------14:19:23 GMT)>From: Scott Zabolotzky <zabolots@ripco.com>
>Newsgroups: microsoft.public.dotnet.framework.aspnet.security
>Subject: App can't write to EventLog on Windows Server 2003
>Date: Fri, 16 Apr 2004 14:19:23 +0000 (UTC)
>Organization: Ripco Communications Inc.
>Lines: 18
>Message-ID: <c5oq1b$bcv$1@e250.ripco.com>
>NNTP-Posting-Host: shell2.ripco.com
>X-Trace: e250.ripco.com 1082125163 11679 209.100.225.144 (16 Apr 2004cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!newsfeed 00.sul.t-online.de!t-onlin>X-Complaints-To: [email]usenet@ripco.com[/email]
>NNTP-Posting-Date: Fri, 16 Apr 2004 14:19:23 +0000 (UTC)
>User-Agent: nn/6.6.5
>Path:
e.de!news-lei1.dfn.de!news-fra1.dfn.de!news2.telebyte.nl!border1.nntp.ash.gi
ganews.com!nntp.giganews.com!newshosting.com!nx01. iad01.newshosting.com!news
-feed01.roc.ny.frontiernet.net!nntp.frontiernet.net !tdsnet-transit!newspeer.
tds.net!gail.ripco.com!zabolotsmicrosoft.public.dotnet.framework.aspnet.security: 9658>Xref: cpmsftngxa06.phx.gbl>X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.security
>
>I have an app that writes to a custom event log (which is
>created at install time with a custom installer DLL). My app
>writes just fine to this custom log when running on Windows
>2000 Server but when I try to run it on Windows 2003 Server I
>get "Access denied" errors.
>
>I'm using impersonation in my app and if I log in with a
>user account that is in the "Domain Admins" groups it will
>work on 2003 as well.
>
>What permissions do I need to modify to allow "Domain Users"
>to be able to write to the EventLog from ASP.NET? Adding all
>users to the "Domain Admins" group is not an option.
>
>THanks...Scott
>
>p.s. I tried changing my app to write to the Application log
>rather than a custom log but the problem still occurs.
>Jim Cheshire [MSFT] Guest
-
Scott Zabolotzky #3 Re: App can't write to EventLog on Windows Server 2003
I'm sorry but I guess I should have worded my original message
a little better. When I said:
"I have an app that writes to a custom event log (which is
created at install time with a custom installer DLL)."
I meant that the event source is created with a call to
CreateEventSource("MySource","MyLog") during my installation
process. The event source is definitely created because if I
run the app as an admin I can write entries to MyLog just fine.
It's definitely appears to be some sort of permissions problem.
Any help you can provide would be greatly appreciated.
Scott
[email]jamesche@online.microsoft.com[/email] (Jim Cheshire [MSFT]) writes:
>You don't really need to alter any permissions. You just need to create
>the event source. The location for that is:>HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servi ces\Eventlog>In there, you will have one key for Application, one for Security, and one
>for System. If you are writing to an event source of "MyApp" in the
>Application log, you would need to create a new key under Application
>called MyApp. Once you do that, the application should work fine.>Jim Cheshire, MCSE, MCSD [MSFT]
>ASP.NET
>Developer Support
>jamesche@online.microsoft.com>This post is provided "AS-IS" with no warranties and confers no rights.>-------------------->14:19:23 GMT)>>From: Scott Zabolotzky <zabolots@ripco.com>
>>Newsgroups: microsoft.public.dotnet.framework.aspnet.security
>>Subject: App can't write to EventLog on Windows Server 2003
>>Date: Fri, 16 Apr 2004 14:19:23 +0000 (UTC)
>>Organization: Ripco Communications Inc.
>>Lines: 18
>>Message-ID: <c5oq1b$bcv$1@e250.ripco.com>
>>NNTP-Posting-Host: shell2.ripco.com
>>X-Trace: e250.ripco.com 1082125163 11679 209.100.225.144 (16 Apr 2004>cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!newsfee d00.sul.t-online.de!t-onlin>>X-Complaints-To: [email]usenet@ripco.com[/email]
>>NNTP-Posting-Date: Fri, 16 Apr 2004 14:19:23 +0000 (UTC)
>>User-Agent: nn/6.6.5
>>Path:
>e.de!news-lei1.dfn.de!news-fra1.dfn.de!news2.telebyte.nl!border1.nntp.ash.gi
>ganews.com!nntp.giganews.com!newshosting.com!nx01 .iad01.newshosting.com!news
>-feed01.roc.ny.frontiernet.net!nntp.frontiernet.net !tdsnet-transit!newspeer.
>tds.net!gail.ripco.com!zabolots>microsoft.public.dotnet.framework.aspnet.security :9658>>Xref: cpmsftngxa06.phx.gbl>>X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.security
>>
>>I have an app that writes to a custom event log (which is
>>created at install time with a custom installer DLL). My app
>>writes just fine to this custom log when running on Windows
>>2000 Server but when I try to run it on Windows 2003 Server I
>>get "Access denied" errors.
>>
>>I'm using impersonation in my app and if I log in with a
>>user account that is in the "Domain Admins" groups it will
>>work on 2003 as well.
>>
>>What permissions do I need to modify to allow "Domain Users"
>>to be able to write to the EventLog from ASP.NET? Adding all
>>users to the "Domain Admins" group is not an option.
>>
>>THanks...Scott
>>
>>p.s. I tried changing my app to write to the Application log
>>rather than a custom log but the problem still occurs.
>>Scott Zabolotzky Guest
-
Troy Hall #4 RE: App can't write to EventLog on Windows Server 2003
Here's a link to a kb article explaining how to grant rights to the event logs
[url]http://support.microsoft.com/default.aspx?scid=kb;en-us;323076[/url]
Troy Hall Guest
-
Jim Cheshire [MSFT] #5 Re: App can't write to EventLog on Windows Server 2003
Hi Scott,
Thanks for your courtesy and decency.
If the event source has been successfully created, the post below to 323076
is likely the issue. Note that this is a new feature of Windows Server
2003.
Jim Cheshire, MCSE, MCSD [MSFT]
ASP.NET
Developer Support
[email]jamesche@online.microsoft.com[/email]
This post is provided "AS-IS" with no warranties and confers no rights.
--------------------<UPcM#z8IEHA.2948@cpmsftngxa06.phx.gbl>>From: Scott Zabolotzky <zabolots@ripco.com>
>Newsgroups: microsoft.public.dotnet.framework.aspnet.security
>Subject: Re: App can't write to EventLog on Windows Server 2003
>Date: Fri, 16 Apr 2004 18:47:00 +0000 (UTC)
>Organization: Ripco Communications Inc.
>Lines: 79
>Message-ID: <c5p9n4$3mq$1@e250.ripco.com>
>References: <c5oq1b$bcv$1@e250.ripco.com>18:47:00 GMT)>NNTP-Posting-Host: shell2.ripco.com
>X-Trace: e250.ripco.com 1082141220 3802 209.100.225.144 (16 Apr 2004cpmsftngxa10.phx.gbl!TK2MSFTNGXA05.phx.gbl!TK2MSFT NGP08.phx.gbl!newsfeed00.s>X-Complaints-To: [email]usenet@ripco.com[/email]
>NNTP-Posting-Date: Fri, 16 Apr 2004 18:47:00 +0000 (UTC)
>User-Agent: nn/6.6.5
>Path:
ul.t-online.de!t-online.de!border2.nntp.ash.giganews.com!nntp.gigan ews.com!e
lnk-atl-nf1!newsfeed.earthlink.net!bigfeed2.bellsouth.net! bigfeed.bellsouth.
net!news.bellsouth.net!cox.net!news-xfer.cox.net!gail.ripco.com!zabolotsmicrosoft.public.dotnet.framework.aspnet.security: 9637>Xref: cpmsftngxa10.phx.gblone>X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.security
>
>I'm sorry but I guess I should have worded my original message
>a little better. When I said:
>
>"I have an app that writes to a custom event log (which is
>created at install time with a custom installer DLL)."
>
>I meant that the event source is created with a call to
>CreateEventSource("MySource","MyLog") during my installation
>process. The event source is definitely created because if I
>run the app as an admin I can write entries to MyLog just fine.
>It's definitely appears to be some sort of permissions problem.
>
>Any help you can provide would be greatly appreciated.
>
>Scott
>
>jamesche@online.microsoft.com (Jim Cheshire [MSFT]) writes:
>>>>You don't really need to alter any permissions. You just need to create
>>the event source. The location for that is:>>>HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Serv ices\Eventlog>>In there, you will have one key for Application, one for Security, andin>>>for System. If you are writing to an event source of "MyApp" in the
>>Application log, you would need to create a new key under Application
>>called MyApp. Once you do that, the application should work fine.>>>Jim Cheshire, MCSE, MCSD [MSFT]
>>ASP.NET
>>Developer Support
>>jamesche@online.microsoft.com>>>This post is provided "AS-IS" with no warranties and confers no rights.>>-------------------->>14:19:23 GMT)>>>From: Scott Zabolotzky <zabolots@ripco.com>
>>>Newsgroups: microsoft.public.dotnet.framework.aspnet.security
>>>Subject: App can't write to EventLog on Windows Server 2003
>>>Date: Fri, 16 Apr 2004 14:19:23 +0000 (UTC)
>>>Organization: Ripco Communications Inc.
>>>Lines: 18
>>>Message-ID: <c5oq1b$bcv$1@e250.ripco.com>
>>>NNTP-Posting-Host: shell2.ripco.com
>>>X-Trace: e250.ripco.com 1082125163 11679 209.100.225.144 (16 Apr 2004>>cpmsftngxa06.phx.gbl!TK2MSFTNGP08.phx.gbl!newsfe ed00.sul.t-online.de!t-onl>>>X-Complaints-To: [email]usenet@ripco.com[/email]
>>>NNTP-Posting-Date: Fri, 16 Apr 2004 14:19:23 +0000 (UTC)
>>>User-Agent: nn/6.6.5
>>>Path:gi>>e.de!news-lei1.dfn.de!news-fra1.dfn.de!news2.telebyte.nl!border1.nntp.ash.ws>>ganews.com!nntp.giganews.com!newshosting.com!nx0 1.iad01.newshosting.com!ner.>>-feed01.roc.ny.frontiernet.net!nntp.frontiernet.net !tdsnet-transit!newspee>>>tds.net!gail.ripco.com!zabolots>>microsoft.public.dotnet.framework.aspnet.securit y:9658>>>Xref: cpmsftngxa06.phx.gbl>>>X-Tomcat-NG: microsoft.public.dotnet.framework.aspnet.security
>>>
>>>I have an app that writes to a custom event log (which is
>>>created at install time with a custom installer DLL). My app
>>>writes just fine to this custom log when running on Windows
>>>2000 Server but when I try to run it on Windows 2003 Server I
>>>get "Access denied" errors.
>>>
>>>I'm using impersonation in my app and if I log in with a
>>>user account that is in the "Domain Admins" groups it will
>>>work on 2003 as well.
>>>
>>>What permissions do I need to modify to allow "Domain Users"
>>>to be able to write to the EventLog from ASP.NET? Adding all
>>>users to the "Domain Admins" group is not an option.
>>>
>>>THanks...Scott
>>>
>>>p.s. I tried changing my app to write to the Application log
>>>rather than a custom log but the problem still occurs.
>>>
>Jim Cheshire [MSFT] Guest
-
Scott Zabolotzky #6 Re: App can't write to EventLog on Windows Server 2003
Thanks for the pointer Jim. It looks like the article at
[url]http://support.microsoft.com/default.aspx?scid=kb;en-us;323076[/url]
will probably help. I just have to learn SDDL. Too bad it
couldn't be something simple!
Scott
[email]jamesche@online.microsoft.com[/email] (Jim Cheshire [MSFT]) writes:
>If the event source has been successfully created, the post below to 323076
>is likely the issue. Note that this is a new feature of Windows Server
>2003.>-------------------->one>>From: Scott Zabolotzky <zabolots@ripco.com>
>>Newsgroups: microsoft.public.dotnet.framework.aspnet.security
>>Subject: Re: App can't write to EventLog on Windows Server 2003
>>Date: Fri, 16 Apr 2004 18:47:00 +0000 (UTC)
>>
>>I'm sorry but I guess I should have worded my original message
>>a little better. When I said:
>>
>>"I have an app that writes to a custom event log (which is
>>created at install time with a custom installer DLL)."
>>
>>I meant that the event source is created with a call to
>>CreateEventSource("MySource","MyLog") during my installation
>>process. The event source is definitely created because if I
>>run the app as an admin I can write entries to MyLog just fine.
>>It's definitely appears to be some sort of permissions problem.
>>
>>Any help you can provide would be greatly appreciated.
>>
>>Scott
>>
>>jamesche@online.microsoft.com (Jim Cheshire [MSFT]) writes:
>>>>>>>You don't really need to alter any permissions. You just need to create
>>>the event source. The location for that is:>>>>>HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Ser vices\Eventlog>>>In there, you will have one key for Application, one for Security, and>>>>>for System. If you are writing to an event source of "MyApp" in the
>>>Application log, you would need to create a new key under Application
>>>called MyApp. Once you do that, the application should work fine.
>>>--------------------
>>>>From: Scott Zabolotzky <zabolots@ripco.com>
>>>>Newsgroups: microsoft.public.dotnet.framework.aspnet.security
>>>>Subject: App can't write to EventLog on Windows Server 2003
>>>>Date: Fri, 16 Apr 2004 14:19:23 +0000 (UTC)
>>>>
>>>>I have an app that writes to a custom event log (which is
>>>>created at install time with a custom installer DLL). My app
>>>>writes just fine to this custom log when running on Windows
>>>>2000 Server but when I try to run it on Windows 2003 Server I
>>>>get "Access denied" errors.
>>>>
>>>>I'm using impersonation in my app and if I log in with a
>>>>user account that is in the "Domain Admins" groups it will
>>>>work on 2003 as well.
>>>>
>>>>What permissions do I need to modify to allow "Domain Users"
>>>>to be able to write to the EventLog from ASP.NET? Adding all
>>>>users to the "Domain Admins" group is not an option.
>>>>
>>>>THanks...Scott
>>>>
>>>>p.s. I tried changing my app to write to the Application log
>>>>rather than a custom log but the problem still occurs.
>>>>
>>Scott Zabolotzky Guest
Reply With QuoteSimilar Questions and Discussions
Posting Permissions
- You may not post new threads
- You may post replies
- You may not post attachments
- You may not edit your posts
