Permissions Break When You Enable Anonymous Access on a Workspace Virtual Directory (283991)


The information in this article applies to:

  • Microsoft SharePoint Portal Server 2001
This article was previously published under Q283991

SYMPTOMS

After you enable Anonymous access on a workspace virtual directory, all users, including those assigned the coordinator and author roles, have only reader permissions to the workspace through the dashboard site.

Permissions continue working as expected with a Web folders connection.

CAUSE

If you enable Anonymous access as an allowed authentication method on the workspace virtual directory in Internet Services Manager, all users are treated as anonymous. The effective permission is that of the everyone group, which by default is assigned the reader role. This happens whether or not other authentication methods, such as Basic or Integrated Windows, are enabled in addition to Anonymous.

RESOLUTION

Disable Anonymous authentication on the workspace virtual directory.

MORE INFORMATION

If you want to enable Anonymous access for a workspace virtual directory, you must create an additional Web site in Internet Services Manager that uses that security model. Do not enable Anonymous access on the workspace virtual directory in the Default Web Site. Note that if Anonymous authentication is used, users cannot create subscriptions.

Follow the instructions in the "Deploying Microsoft SharePoint Portal Server 2001 across an Extranet" white paper to create a new Web site and modify the security settings for Anonymous access. The "Deploying Microsoft SharePoint Portal Server 2001 across an Extranet" white paper is available from the following Microsoft Web site:

http://www.microsoft.com/sharepoint/techinfo/deployment/Extranet.asp

In the white paper, see the topics "Create a New Web Site in IIS" and "Modify the Security Settings on the New Web Site."
Modification Type:MinorLast Reviewed:4/25/2005
Keywords:kbprb KB283991
©2004 Microsoft Corporation. All rights reserved.