disable-the-loopback-check-for-specific-host-names-on-all-sharepoint-web-and-application-servers/
2015-09-20 12:26
841 查看
Microsoft has introduced new feature – Loopback Security Check in Windows Server 2003 SP1 to prevent access to a web application using a fully qualified domain name (FQDN) if an attempt to access it takes place from a machine that hosts that application. The end result is a 401.1 Access Denied from the web server and a log on failure in the event log.
To ensure all the calls initiated from the server itself does not result into any HTTP 401 errors in IIS logs, Microsoft has suggested to either disable loop back check security feature entirely on the SharePoint servers or configure list of URLs you want to access from server itself in 896861 KB Article –http://support.microsoft.com/kb/896861
Reference:
More detailed explanation of Microsoft KB Article regarding Loopback Check Security feature – http://iedaddy.com/2009/04/sharepointdisable-loopback-check/
Spencer Harbar’s article on why you don’t want to disable loopback check on Production Server – http://www.harbar.net/archive/2009/07/02/disableloopbackcheck-amp-sharepoint-what-every-admin-and-developer-should-know.aspx
http://www.harbar.net/archive/2010/02/12/groundhog-day-configuring-back-connection-host-names-using-group-policy.aspx
http://www.toddklindt.com/blog/Lists/Posts/Post.aspx?ID=107
http://blogs.technet.com/b/sharepoint_foxhole/archive/2010/06/21/disableloopbackcheck-lets-do-it-the-right-way.aspx
http://www.jeremytaylor.net/2010/05/24/sharepoint-disable-loopback-check-disableloopbackcheck-dword-in-registry/
From the Start menu, click Run and enter “regedit” to launch the Registry Editor.
In HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa, create a DWORD for DisableLoopbackCheck and enter a value of “1” (hexadecimal).
After you enter the value, click OK to finish editing.
from [http://nikpatel.net/2013/09/05/disable-the-loopback-check-for-specific-host-names-on-all-sharepoint-web-and-application-servers/]
[http://www.jeremytaylor.net/2010/05/24/sharepoint-disable-loopback-check-disableloopbackcheck-dword-in-registry/]
To ensure all the calls initiated from the server itself does not result into any HTTP 401 errors in IIS logs, Microsoft has suggested to either disable loop back check security feature entirely on the SharePoint servers or configure list of URLs you want to access from server itself in 896861 KB Article –http://support.microsoft.com/kb/896861
Reference:
More detailed explanation of Microsoft KB Article regarding Loopback Check Security feature – http://iedaddy.com/2009/04/sharepointdisable-loopback-check/
Spencer Harbar’s article on why you don’t want to disable loopback check on Production Server – http://www.harbar.net/archive/2009/07/02/disableloopbackcheck-amp-sharepoint-what-every-admin-and-developer-should-know.aspx
http://www.harbar.net/archive/2010/02/12/groundhog-day-configuring-back-connection-host-names-using-group-policy.aspx
http://www.toddklindt.com/blog/Lists/Posts/Post.aspx?ID=107
Production and Staging Environments
For the staging and production environment, it is recommended to configure list of URLs and web site addresses you want to exclude. Plan to disable the loopback check feature initially to ensure SharePoint sites are accessed from servers using host headers (see next step – Development and Test environments) during installation and configuration of servers and later configure list of addresses you want to exclude once SharePoint web applications are configured before go-live.http://blogs.technet.com/b/sharepoint_foxhole/archive/2010/06/21/disableloopbackcheck-lets-do-it-the-right-way.aspx
Development and Test Environments
For the development and test environment, plan to disable the loopback check completely to enable debugging and testing locally from the server. Plan to add a DisableLoopbackCheck value to the registry under the assumption that a host header will be used. Please note DisableLoopbackCheck is not needed if you are using ServerName to refer your SharePoint URLs.http://www.jeremytaylor.net/2010/05/24/sharepoint-disable-loopback-check-disableloopbackcheck-dword-in-registry/
From the Start menu, click Run and enter “regedit” to launch the Registry Editor.
In HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa, create a DWORD for DisableLoopbackCheck and enter a value of “1” (hexadecimal).
After you enter the value, click OK to finish editing.
from [http://nikpatel.net/2013/09/05/disable-the-loopback-check-for-specific-host-names-on-all-sharepoint-web-and-application-servers/]
[http://www.jeremytaylor.net/2010/05/24/sharepoint-disable-loopback-check-disableloopbackcheck-dword-in-registry/]
相关文章推荐
- iOS:转载:IOS谓词--NSPredicate
- android — NDK生成so文件
- 全面了解 iOS 静态库开发
- Android:LayoutParameter不匹配问题
- 在iTunesConnection上审核时遇到的大坑
- Bitcode 一种中间代码 Xcode7 && ios9
- android SDK 安装目录结构详解及各工具
- iOS开发推送本地通知
- CPU是AMD的电脑如何安装android studio,以及studio的环境变量的配置
- Android如何确定哪个APK正在偷流量的方法
- Android Studio + gradle + Androidannotations 配置记录
- Android,发现对于外部导入的工程,编译的时候不能够正常生成R.java文件的解决办法
- Android学习实践:2.创建另一个Activity并通过按钮单击打开
- Android 利用addView 动态给Activity添加View组件
- Android中RelativeLayout各个属性
- Android 开源框架Universal-Image-Loader完全解析(一)--- 基本介绍及使用
- ios自动监测更新
- 小程序猿都找到了工作经验的方式
- AndroidStudio配置SVN以及使用代码管理
- webview实践