70-292 Managing and Maintaining a Microsoft Windows Server 2003 Environment for a W2K MCSA Certification Exam

Demo Question 10.

You work as the network administrator at EliteCertify.com. The EliteCertify.com network consists of a single Active Directory domain named EliteCertify.com. All servers on the EliteCertify.com network run Windows Server 2003 and all client computers run Windows XP Professional. IIS 6.0 is installed on a member server named EliteCertify -SR21. The EliteCertify.com intranet Web site is hosted on EliteCertify -SR21. Over the past few days, several users have complained about not being able to access all Web pages on EliteCertify -SR21. You investigate the issue and discover that users receive the 401: Access is denied error message when they attempt to access a few Web pages. You need to investigate the issue further and want to view information on each occurrence when 401: Access is denied errors were returned to users who wanted to access content on the Web site. You want to use the best source of information to troubleshoot your specific issue. What should you do?

A. On EliteCertify -SR21, open the latest log files in the C. \windows\system32\LogFiles folder. Search the log files for error code 401 Unauthorized type entries.
B. On the client computers of users received the error message; open the latest log files in the
C. \windows\system32\LogFiles folder. Search the log files for error code 401 Unauthorized type entries. Open Event Viewer. On EliteCertify -SR21, open the application event log. Search for the IISLOG event source.
D. Open Event Viewer. On EliteCertify -SR21, open the system event log. Search for the IISLOG event source.


Display Answer

Answer: A

Explanation: The 401 Unauthorized error code means that the user's credentials were not accepted by the authorization process. The credentials which were provided do not include permission to access the Web page or directory. IIS logs the error in the Web logs for the site at the same time that it sends the HTTP error message to the client. IIS by default logs all site activity to the C. \windows\system32\LogFiles folder on a daily basis. The log files are stored in a W3 Extended log files format, with yymmdd being the current date. A new log file log is created each day. To troubleshoot your issue, you should open and review several of the recently created log files in the C. \windows\system32\LogFiles folder. You can easily find the specific error code information you are interested in by searching for the 401 Unauthorized error code type. Incorrect answers: B. IIS is not installed on client computers. No errors are logged in the C. \windows\system32\LogFiles folder because this folder does not exist on client computers. C. The system event log does not contain HTTP error messages. The system event log contains important information on the stability and conditions of the operating system. D. The application event log does not contain HTTP error messages. The application log stores events that pertain to applications running on the computer.