How can I determine the password for the IUSR and IWAM accounts that IIS installation creates?
The passwords for these accounts reside in the user account database (i.e., SAM) on Windows 2000 (without Active Directory—AD) and Windows NT 4.0 or in AD on Win2K domain controllers (DCs). As a result, obtaining passwords from those data stores is a severe breach of security. Although you can obtain those passwords by using a few tools, you don't have to work that hard because the passwords also reside in the metabase. Enter the script that Listing 1 shows in a text editor such as Notepad, then save the script as getpass.vbs (any name will do as long as it ends .vbs). When you execute the script, you'll see the username and password of the default IUSR and IWAM accounts.
I can delete all accounts named IUSR and IWAM imported from the SAM of WinNt4.0 to a Windows2000 Active Directory?
Worked great to solve the following error:
DCOM got error "Logon failure: the user has not been granted the requested logon type at this computer. " and was unable to logon .
On W2K, IIS 5.0, used info in Microsoft article Q255770 to re-enter this password in Component Services for IWAM_servername account.
That was a great way to check those passwords. I never knew about that. Mine accidentally got changes then my ISAPI apps that send e-mail, send soap, request XML web services quit working.
Fantastically simple, such an obvious oversight on Microsoft's behalf...thanks to this user community for another great solution!
Register
