Self Registration Page Reports "Directory Information Not In Use" and IM Name Registered to IM Manager Service Account

Article:TECH155496  |  Created: 2011-03-14  |  Updated: 2011-03-14  |  Article URL http://www.symantec.com/docs/TECH155496
Article Type
Technical Solution

Product(s)

Subject

Issue



When a user goes to the IM Manager Self Registration page (http://<hostname>/immanager/public/imemployee.asp) the following message is displayed:

Directory Information Not In Use

 

  • If a user does register an IM name when this error message is displayed then the registration is for the IM Manager service account.

1. Open the IM Manager Administration Console.
2. Click on Administration tab.
3. Click on the User Management > Modify Users page.
4. Use the search criteria to find the IM name.
5. The value in the Display Name field is the distinguished name of the IM Manager service account.

Conditions

  • Account listed at top of Self Registration Page is the IM Manager service account account.

1. Open the IM Manager self-registration page http://<hostname>/immanager/public/imemployee.asp.
2. There is an account list at the top of the page that says:

This account belongs to <accountname>.

The following screenshot shows an account belonging to blackops-simm\benjamin_lurie:

 

 

If the account listed is the IM Manager service account then this condition applies.

  • Anonymous access is enabled on the IM Manager public directory in IIS.

 

Check if the IIS directory /immanager/public has anonymous authentication enabled.

    Windows 2000/2003

      1. Open the IIS Administrator MMC plugin.
      2. Expand Web Sites|Default Web Site|immanager
      3. Right click on the public folder and choose Properties.
      4. Click the Directory Security tab.
      5. Click the Edit... button for the Authentication and access control section.
      6. If Enable anonymous access is enabled then this condition is met.
         
    Windows 2008
      1. Open the IIS Administrator from Start|Administrative Tools|Internet Information Services (IIS) Manager.
      2. Expand the server tree on the left hand side of the snap-in.
      3. Expand Sites|Default Web Site|immanager.
      4. Double click on IIS|Authentication (in the main window). This brings up the list of authentication methods of the folder.
      5. If Anonymous Authentication is Enabled in the Status column then this condition is met.

 


Cause



The IM Manager self registration page uses IIS integrated windows authentication to obtain the Active Directory logon account of the end-user.  If anonymous access control is enabled then IIS defaults to using the IIS account configured for anonymous access.  For the IM Manager web site the IIS anonymous account is the IM Manager service account.


Solution



Reconfigure the IIS authentication settings as described in this article: Required IIS Authentication Settings and File Permissions for IM Manager Web Pages.




Article URL http://www.symantec.com/docs/TECH155496


Terms of use for this information are found in Legal Notices