Need help: Deploying least privilege admin accounts for MOSS 2007
I’m having a heck of a time with this and hope someone can help (Free drinkees at the BPC ;-))
Context
-
DB/DC: MWH-ABC1.least.local (IP .101): Separate SQL 2005/Win 2008 server which also serves as the DC
-
WFE: MWH-ABCWin2003.least.local (IP .202) Separate MOSS 2007 Ent/Win 2003 server
-
Least\leastsetup is the domain setup account with Local Admin on WFE and securityadmin and dbcreator in SQL
-
Least\leastfarm is the domain farm account used when SP Config Wizard is creating the farm
-
Leastsetup is used to install SP, run config wizard and create intranet web and root site collection with Team Site root web site
-
All of the above works fine
-
BUT I can’t find an account that can login to the root web
Questions
-
What am I missing?
Signed,
Not the Least of which DesperateXpert Search Agents for Microsoft web sites: http://www.parallelspace.net/MicrodeX
August 8th, 2010 2:40am
Who are the owners of the site collection?
You can view this in Cental Admin Application Management (SharePoint Site Management section) Site collection administrators
I always make the Admin account (Install Account) as one of the owners as a backdoor. Then I make the site collection owner the secondary. In my case that's usually me, and then I assign the reset of Systems Operations once I get into the RootWeb
on that site collection.
Free Windows Admin Tool Kit Click here and download it now
August 8th, 2010 3:11am
No luck. The web app/root site collection/root web site URL is
http://corporate2003.least.local
No problem administering it using least\leastsetup ...the domain account I used to install MOSS, run config wizard, create the web app/root site collection/root web site
I made the account the primary site collection admin. Still can't login. Repeatedly get prompted for userid and password by IE.Xpert Search Agents for Microsoft web sites: http://www.parallelspace.net/MicrodeX
August 8th, 2010 3:20am
Hi,
I noted that your WFE server’s name is
MWH-ABCWin2003.least.local, but you root web URL include
corporate2003.least.local.
It seems you have used the host header value for this web application, you must configure this host header in DNS in order to parse this URL.
Hope this helps
Thanks!
Stanfford
Free Windows Admin Tool Kit Click here and download it now
August 11th, 2010 12:26pm