Allow anonymous access to Publisher Diagnostics?

Similar Messages

• Allow Anonymous Access to the Password Reset Portal

  How do I go about enabling Anonymous Access to the Password Reset Portal?
  The following instructions don't seem accurate anymore.  Has this setting changed with Sharepoint Services 3.0 SP2?
  When I click on "Settings" in Step 4 the only option displayed is "Permission Levels".
  Allow Anonymous Access to the password reset portal
  In this procedure you will configure the portal to allow Anonymous Access to users who need to reset their passwords.
  To allow anonymous access to the password reset portal
  Log on to the password portal (http://<portal hostname/PasswordPortal) as an administrator.
  On the top right hand side of the portal homepage click Site Actions, and then click Site Settings.
  Under Users and Permissions click Advanced Permissions.
  On the Permissions page, click Settings, and then select Anonymous Access.
  Under Anonymous users can access, select Entire Web site, and then click OK.

  Yes, that was very helpful.  Thanks! 
  Just in case that site dissapears and someone else needs this info, here it is:
  If you don’t see the “Anonymous Access” menu option in the “Settings” menu, it might not be turned on in Central Admin/IIS. You can manually navigate to “_layouts/setanon.aspx” if you want, but the options will be grayed out if it hasn’t been enabled in IIS
  First get to your portal. Then under “My Links” look for “Central Administration” and select it.
  In the Central Administration site select “Application Management” either in the Quick Launch or across the top tabs
  Select “Authentication Providers” in the “Application Security” section
  Click on the “Default” zone (or whatever zone you want to enable anonymous access for)
  Under “Anonymous Access” click the check box to enable it and click “Save”
  NOTE: Make sure the “Web Application” in the menu at the top right is your portal/site and not the admin site.
  You can confirm that anonymous access is enabled by going back into the IIS console and checking the Directory Security properties.
  Now the second part is to enable anonymous access in the site.
  Return to your sites home page and navigate to the site settings page. In MOSS, this is under Site Actions – Site Settings – Modify All Site Settings. In WSS it’s under Site Actions – Site Settings.
  Under the “Users and Permissions” section click on “Advanced permissions”
  On the “Settings” drop down menu (on the toolbar) select “Anonymous Access”
  Select the option you want anonymous users to have (full access or documents and lists only)
  Now users without logging in will get whatever option you allowed them.
  A couple of notes about anonymous access:
  You will need to set up the 2nd part for all sites unless you have permission inheritance turned on
  You must do both setups to enable anonymous access for users, one in IIS and the other in each site

• SSRS 2012 SP integrated only allows Anonymous Access

  We are building a SP2013 farm with SQL2012 and the SSRS 2012 add in , looking at the rsreportserver.config we have added the parameter RSWindowsNegotiate as listed below. 
  <Authentication>
      <AuthenticationTypes>
        <RSWindowsNegotiate/>     
  </AuthenticationTypes>
  We have followed this article (http://technet.microsoft.com/en-us/library/cc281253.aspx) where the following is listed:
  ASP.NET must be configured for Windows Authentication. By default, the Web.config files for the Report Server Web service and Report Manager include the <authentication mode="Windows"> .
  However looking at the web.config of the report server the following parameters * (see below)are present but
  not the authentication mode='windows', only <windowsAuthentication enabled="true" /> is listed. 
  * <security>
        <authentication>
          <anonymousAuthentication enabled="false" />
          <windowsAuthentication enabled="true" />
        </authentication>
      </security>
  The report server is operational as long as we use datasources  located on the same farm but as soon as try to utilize a datasource outside the farm the report server uses anonymous to access the datasource. We have configure the c2wt services and have
  the proper spn's in place on the domain , so we should not be suffering from the double hop issue.
  How do we configure the reportserver to accept windows authentication?
  Any help is welcome.
  Regards,
  Jim

  Hi Jim,
  In your scenario, you need to configure the SharePoint mode report server to use Kerberos authentication. Since SQL Server 2012, Reporting Services SharePoint Integrated mode has been changed from a Windows Service to be a SharePoint Shared Service. In this
  way, the SharePoint mode report server has its own RSreportserver.config file located in the following directory (SharePoint 2013):
  C:\Program Files\common files\Microsoft Shared\Web Server Extentions\15\Web Services\Reporting
  So, the document you referred to applies to native mode report server. For SharePoint mode report server, what you need to do is set the Authentication elements in its corresponding configuration file as follows:
  <Authentication>
  <AuthenticationTypes>
  <RSWindowsNegotiate/>
  </AuthenticationTypes>
  After that, we need to reset the IIS. When creating the SQL Server Reporting Services Service Application, we need to check the “Enable Windows Authentication” option, and select the Integrated Windows authentication type to “Negotiate (Kerberos)”.
  Besides, we must register SPNs for both the SharePoint mode and the SQL Server service to which the report data source establish a connection.
  Here is an excellent blog about this topic that you can walk through:
  http://blogs.technet.com/b/sharepoint_-_inside_the_lines/archive/2013/05/28/sharepoint-2013-with-ssrs-2012-and-constrained-delegation.aspx 
  Regards,
  Mike Yin
  If you have any feedback on our support, please click
  here
  Mike Yin
  TechNet Community Support

• Anonymous Access Sharepoint Foundation 2013

  Is it possible to allow anonymous access in Sharepoint Foundation 2013?  I've enabled anonymous access at the site level as well as via central administration but users are still prompted for login when browsing to the site anonymously.  I'm
  more curious if this is an issue with the Foundation version specifically at this point.  Thanks.

  Hi mtrosper,
  Please disable anonymous access via the UI, then enable it using PowerShell, compare the result.
  You can use the following PowerShell command to enable it:
  $webApp = Get-SPWebApplication 'http://someurl:9999'
  $webApp.IisSettings['Default'].AllowAnonymous=$false
  $webApp.update()
  More information, you can refer to the link:
  http://sharepoint.stackexchange.com/questions/74487/how-to-disable-anonymous-access-for-sharepoint-webapplication-with-powershell
  Best Regards,
  Wendy
  Forum Support
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
  [email protected]
  Wendy Li
  TechNet Community Support

• Removing Anonymous Access on Exchange for postfix relay (inbound)

  Hi good afternoon. I'm trying to make the Posftix authenticate to the Exchange to deliver mail to local accounts. In the SMTP Virtual server Exchange 2003 i disable anonymous access and configure postfix to authenticate with an account that exists in the
  Active directory. The problem is that now in the postfix log of when you want to try to deliver a mail coming from an external domain throws me:
  said: 454 5.7.3 Client does not have permission to Send As This sender.
  I missed to configure something? The idea is not to allow anonymous access but the SMTP server.
  Someone had to do something similar?
  Thank you very much.

  Hi,
  Postfix uses the 'AUTH=<>' verb to indicate the message was received anonymously which creates a conflict with the authentication requirement in Exchange.
  Try the following workarounds:
  - Authenticate the senders in Postfix using LDAP calls.
  - Disable authentication between Postfix and Exchange.
  - Configure the web applications to send mail directly to Exchange.
  - Add the service account used for authentication to the Exchange Domain Servers.
  Thanks,
  Simon Wu
  TechNet Community Support

• Iview for anonymous access

  Hello,
  I have an iview and I need to allow anonymous access to it. For this in portalapp.xml I have following:
  In portal application config:
  <application-config>
      <property name="AuthScheme" value="anonymous">
      </property>
  </application-config>
  In conponent-config:
  <components>
  <component name="MyDynPage">
  <component-config>
  <property name="ClassName"  value="mypackage.MyDynPage"/>
  <property name="SecurityZone" value="com.sap.portal.pdk/no_safety"/>
  </component-config>
  </component>
  </components>
  What must to do for the anoymous access to this iview
  Best Regards.
  Altafin

  Hi Altafin,
  as an addition to Noel's answer:
  Keep in mind that there's a difference between an portal component and an iView. A portal component is navigated to with an URL like this:
  http://myserver/irj/servlet/prt/portal/prtroot/myapp.mycomponent
  while an iView is navigated to with an URL like this
  http://myserver/irj/portal?NavigationTarget=pcd://portal_content/myfolder/myIView
  An iView is a configured(and possibly personalized) instance of a portal component. If you navigate to the portal component, you do not have personalization/configuration.
  As Noel wrote, if you want to show the iView, add the iView to some anonymous role. But if you want to navigate to a portal component, you'd rather adjust the permissions for the security zone you mention in the portalapp.xml (and add an anonymous role to it).
  You'll find that under System Administration->Permissions->Portal Permissions->Security Zones->com.sap.portal.pdk->no_safety
  But you shouldn't take this zone name, as this is the pdk namespace. Take your own. you can write near to anything you like there, and the portal will automagically add the zone to the Security Zones folder upon deployment.
  Regards,
  Armin

• Switching SharePoint from Secured to Anonymous Access - Problems have Arisen

  Background:
  We had SharePoint setup by a professional SharePointer several years ago to be secured from anonymous Access.  Documentation was non-existant except showing us how to setup new sites and a few other things.
  Goal:
  We are trying to remove the login only access and switch it so that people can see the front page and a few select subpages anonymously.  We are in the midst of a repurposing.
  Problem:
  I have followed the instructions at this
  site and the first thing that happens when we go to the site is that we are prompted to login.  We are thinking that the professional set something else somewhere to force it to prompt.  Any help with this would be appreciated.
  Troubleshooting:  On top of the basic setup I have double checked permissions on all Sites and folders making sure that there is nothing on the main page that isn't allowed Anonymous Access. Have also fiddled with IIS settings, but to no avail (the
  settings have been returned to normal).
  Also, please note that my AnonymousPermMask64 is set to:
  ViewListItems, ViewVersions, ViewFormPages, Open, ViewPages, UseClientIntegration

  Hi,
  According to your post, my understanding is that you wanted to enable the anonymous access for the site.
  As you had enable the anonymous access in web application and site level following the instructions, and still could not enable the anonymous access.
  To narrow down the issue, we can do some steps as below.
  First, we can create a new site in the web application, then enable the anonymous access for the site.
  If the site could anonymous access, the issue would occur in your old site.
  Then we can check the steps for anonymous access in the old site, or we can also check ULS log to see if anything unexpected occurred.
  For SharePoint 2010, by default, ULS log is at
  C:\Program Files\Common Files\Microsoft Shared\Web Server Extensions\14\LOGS
  What’s more, we can also back up the site collection, then restore the site collection to check whether it works.
  http://technet.microsoft.com/en-us/library/ee748617(v=office.14).aspx
  http://technet.microsoft.com/en-us/library/ee748655(v=office.14).aspx
  Second, if the new site still could enable the anonymous access, the issue would occur in the web application level.
  You should check the issue with the web application as above.
  You can also backup the web application restore to a new web application to check whether it works.
  http://technet.microsoft.com/en-us/library/ee748623(v=office.14).aspx
  Thanks & Regards,
  Jason
  Jason Guo
  TechNet Community Support

• Instant Portal anonymous access?

  I'd like to make Instant Portal our web facing portal but I've been told by a few people at Oracle that you cannot allow anonymous access. I would have to use the full blown Portal, which I'm not opposed to doing, but having said that....is there anyway to port the prebuilt templates in Instant Portal to Portal?

  Hello,
  Just curious if you ever found out anything about this? I'm also wondering the same thing. I'd like to make the first page available to all viewers I want them to click Log In to see more.
  Thanks,
  Jessica

• Network access: Do not allow anonymous enumeration of SAM accounts and shares

  Hi guys,
  What will happen if I enable "Network access: Do not allow anonymous enumeration on SAM accounts and shares" ?
  Does the users (everyone) would not be able to list all shared folders on that computer?
  What is the impact of this one?
  Been searching for the effect of this but I cannot find precise answer.
  Thank you in advance for your help!

  Hi whitesql,
  It’s difficult to talk about when a policy disable effect if we know how it works right? You can refer the following KB to realize the enumeration mainly work for first:
  The effects of removing null sessions from the Microsoft Windows 2000 and Microsoft Windows NT environment
  http://support.microsoft.com/kb/890161/EN-US
  Network access: Do not allow anonymous enumeration of SAM accounts
  https://msdn.microsoft.com/en-us/subscriptions/downloads/jj852230(v=ws.10).aspx
  Restricting Anonymous Access
  https://msdn.microsoft.com/zh-cn/library/cc785670(v=ws.10).aspx
  I’m glad to be of help to you!
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Support, contact [email protected]

• Login prompt showing up on mobile devices on publishing anonymous access website

  We have a website that is a publishing site using anonymous access.  The website works fine except on a mobile device a login prompt pops up.  if you press cancel the website works fine.  It only happens if you go to the homepage.  I
  have ensured everything is checked in etc.  Is there anyway to find out why this is happening?
  Kristin

  Hi,
  For your issue, try to disable the mobile view:
  Go to Site settings => Manage site feature => deactivate "Mobile Browser View" 
  Here are some similar post, you can use as a reference:
  https://social.technet.microsoft.com/Forums/en-US/a25c4eac-5992-40c7-a3c1-3478c886b690/mobile-devices-prompt-for-creditials-while-accessing-publishing-site-with-anonymous-access-enabled?forum=sharepointadminprevious
  https://social.technet.microsoft.com/Forums/en-US/84e47f9a-8d4d-4ebc-87d2-aa4eefeb6c2e/mobile-devices-prompt-for-creditials-while-accessing-publishing-site-with-anonymous-access-enabled?forum=sharepointadminprevious
  Best Regards,
  Lisa Chen
  Lisa Chen
  TechNet Community Support

• How to connect to web services from iOS to get list using anonymous access

  Hello
  This is a public facing web site that I would like to have access to a list file to get data in an iOS app however I get 403 forbidden because I do not have a username and password.  
  How can I get this list with anonymous access?  
  Under my admin account I published this list as a web page for anonymous access using a data view but I would also like the same data for my iOS app. 
  Thank you for any help and direction.

  yes, it is.  
  List
  Anonymous users can:
  View Items
  This site collection is hosted and the permission level for anonymous users is set to entire web site.
  here's the error & url I get off of IE when clicking http://myportal/_vti_bin/listdata.svc/MyList 
  http://myportal/_layouts/error.aspx?ErrorText=Object%20reference%20not%20set%20to%20an%20instance%20of%20an%20object%2E
  Error
  An error has occurred on the server.
  Troubleshoot issues with Microsoft SharePoint Foundation.
  Correlation ID: 52edf46c-682d-426e-b04c-8a8bb0a92040
  Date and Time: 7/29/2014 12:09:41 PM

• Project Server 2013 Anonymous Access (SP or PS modes)

  Greetings,
  This has become quite painful.  I have two tickets opened with M$ and I've never witnessed that with which I am witnessing.
  Simple question, how to enable Project Server 2013 Anonymous Access...I've been at it for over a week, I've tried in both SP perms mode and PS perms mode.  And I've built a bone stock SP/PS server to determine if my farm's jacked or not.  I get
  the exact same behavior...prompt for creds.  M$ told me today that anon has never ever been something offered in SP or PS today or at any point in the past.  A simple gotomeeting sent that group reeling out off into outer space.  I'm glad I
  could help them on their technical journey, but damn't if I don't feel used for spending $1000 on two tickets.
  Tried everything I could possibly think of...Please help, before I eat a bullet.

  When you enable anonymous access to a Web site, you allow anonymous users (and authenticated users who have not been granted access to the site) to browse the entire Web site, including any list, library, folder within a list or library, list item, or document
  that inherits its permissions from the Web site
  I think you are referring to PWA/_layouts/15/user.aspx if I understood your query correctly.
  As you could read, its referring to SharePoint list and libraries and not Project Webpart data.
  Anonymous Access: Specify what parts of your Web site (if any) anonymous users can access. If you select Entire Web site, anonymous users will be able to view all pages in your Web site and view all lists and items which inherit permissions
  from the Web site. If you select Lists and libraries, anonymous users will be able to view and change items only for those lists and libraries that have enabled permissions for anonymous users. 
  So this anonymous doesn't mean users can access, PWA pages like Projects.aspx with anonymous account. If this happens all anonymous users would see all projects...
  Project PWA site, has pages like tasks.aspx, projects.aspx, Timesheets.aspx, etc. Users who access Project Server 2010 through the Web interface (Microsoft Project Web App) use these pages that are composed of Web Parts, which are modular elements that present
  information on SharePoint pages. Now, to get users based data, this checks for user role, permission and data is rendered.
  http://technet.microsoft.com/en-us/library/gg314584(v=office.14).aspx
  I am curious to know if you would like all users who have not been granted access to the site also access your projects? What is the objective or business requirement you are trying to solve here.
  Shazeb Khan

• Allow anonymous login

  Is it possible to allow anonymous login but disallow anonymous searching.
  If its possible some direction how to achieve it.
  Appreciate any input.
  Thank you

  Rather than adding a Deny ACI, you should search for the ACI that is granting Compare, Search rights to anonymous users, and remove the operation that you do not want to grant (compare in the example mentioned).
  Example : Transform
  aci: (target ="ldap:///dc=example,dc=com")(targetattr !="userPassword")(version 3.0;acl "Anonymous read-search access";allow (read, search, compare)(userdn = "ldap:///anyone");)
  Into:
  aci: (target ="ldap:///dc=example,dc=com")(targetattr !="userPassword")(version 3.0;acl "Anonymous read-search access, but no compare";allow (read, search)(userdn = "ldap:///anyone");)
  Ludo

• Weblogic Server 9.2 by default allows anonymous modification to JNDI tree

  We found out that Weblogic Server 9.2 by default allows anonymous modification to JNDI tree.
  This is definitely a big security hole. But Oracle support said this is Work By Design conforming to JNDI Specification.
  So we thought this might be overlooked by lots of Weblogic Administrators and would like to share this finding.
  We were told that the solution is to create a policy for jndi.
  We are still checking if there are other resources that are open to anonymous access.
  Hope this will help.
  thanks!

  Yes the only way to secure the JNDI is applying the policies..
  But the catch is, even if your code is executing within the container, it has to pass the credentials..
  Dont knw wether its a good behavior or bad, but that is how it works :)

• Troubleshooting SharePoint Auth prompts and Anonymous access with Fiddler - Is there a better way?

  I've troubleshooted (troubleshot?) many SharePoint sites for anonymous and random authentication prompts. It usually winds up being something not checked in or published, but sometimes it's something more random, like a survey list based on a template from
  another site prompting for auth even when configured for anonymous access, but when created manually, question by question, works fine for anonymous, and other random things I've run into in the past. In these situations, I almost always break out Fiddler,
  and then almost always move on to the tried and true method of "trying different things" until getting it to work.
  Because Fiddler almost never, in my experience, produces actionable results pointing at a specific file or problem. Am I alone? And if not, does anyone have anything better they've used over time?
  Thanks!

  That is as close as you're going to get to the element that isn't loading, although if it is a reference in a page, you should see the error when attempting to load the reference.
  Trevor Seward, MCC
  Follow or contact me at...
  &nbsp&nbsp
  This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.