HOW TO: Use a FrontPage Web Site on a Clustered File Share (324320)


The information in this article applies to:

  • Microsoft FrontPage 2002 Service Pack 2 (SP-2)
  • Microsoft Windows Server 2003, Enterprise Edition
  • Microsoft Windows Server 2003, Datacenter Edition
  • Microsoft Windows 2000 Advanced Server SP3
  • Microsoft Windows 2000 Datacenter Server SP3
  • Microsoft Internet Information Services version 6.0
  • Microsoft Internet Information Services 5.0
This article was previously published under Q324320

IN THIS TASK

SUMMARY

This article describes the configuration that you must use when you host a FrontPage Web site on a clustered file share. You must follow these steps because FrontPage uses the Internet Information Services (IIS) Web server's request user identity (such as the anonymous user account) to create files and folders. FrontPage uses the local computer system account (that is, machinename$) to do administrative tasks on the file system. Because this scenario only works in an environment with Kerberos authentication, you must enable Kerberos authentication either through one of the cluster administration tools (Cluadmin.exe or Cluster.exe).

NOTE: If you are using Windows 2000, you must be using Service Pack 3.

back to the top

Permissions to Enable Kerberos for Network Names

For additional information about the permissions that you must have to enable Kerberos for Network Names, click the following article numbers to view the articles in the Microsoft Knowledge Base:

302389 Description of the Properties of the Cluster Network Name Resource in Windows Server 2003

307532 How to Troubleshoot the Cluster Service Account When It Modifies Computer Objects

NOTE: The Cluster Service account must be able to create computer objects in Active Directory. By default, all users can create a default limit of 10 computer objects.

NOTE: The network name resource must be offline before you enable Kerberos support.

back to the top

Enable Kerberos Authentication with the Cluster Administrator Tool

NOTE: this procedure only works on Microsoft Windows Server 2003. With the Microsoft Windows 2000 version of Cluadmin.exe, you cannot enable Kerberos support. The next section, which describes how to enable Kerberos support by using the command line, works for Windows 2000.
  1. Open Administrative Tools.
  2. Click Cluster Administrator.
  3. Select the cluster that you want to configure.
  4. Select Resources, and then locate the Network Name resource that you want.
  5. Take that resource offline.NOTE: All resources that depend on this Network Name resource are also brought offline.

  6. Right-click the Network Name resource, click Properties, and then click the Parameters tab.
  7. Click to select the Enable Kerberos Authentication check box, click OK, and then bring the resource back online.
back to the top

Use the Command Line to Enable Kerberos Authentication

You can also enable Kerberos authentication from the command line:
  1. Open a command prompt.
  2. Type the following, and then press ENTER:

    cluster res "res name" /priv RequireKerberos=1

    NOTE: "res name" is the name of the resource. You may have to enclose the resource name in quotation marks, as follows:

    cluster res "Cluster Name" /priv RequireKerberos=1

    For help, run the following command:

    cluster /?

back to the top
Modification Type:MajorLast Reviewed:6/25/2004
Keywords:kbhowto kbHOWTOmaster KB324320
©2004 Microsoft Corporation. All rights reserved.