Microsoft KB Archive/236154

= Err Msg: Error Fetching URL, (PRTH_E_ACCESS_DENIED - Access Denied) Error Code: -2147216891 =

Article ID: 236154

Article Last Modified on 6/11/2002

-

APPLIES TO


 * Microsoft Site Server 3.0 Standard Edition

-



This article was previously published under Q236154



IMPORTANT: This article contains information about modifying the registry. Before you modify the registry, make sure to back it up and make sure that you understand how to restore the registry if a problem occurs. For information about how to back up, restore, and edit the registry, click the following article number to view the article in the Microsoft Knowledge Base:

256986 Description of the Microsoft Windows Registry



SYMPTOMS
In Site Server Search, when you create a Web link crawl catalog definition using the Fully Qualified Domain Name (FQDN) or IP address of the computer, the crawler fails to authenticate against the Web site if it requires Windows NT Challenge/Response authentication. The gatherer log reports the following error message:

Error fetching URL, (PRTH_E_ACCESS_DENIED - Access denied) Error Code: -2147216891

If you use the NetBIOS name of the secured Web site to crawl, the crawler authenticates properly.



CAUSE
The Site Server Gatherer Filtering Daemon (Fltrdmn.exe) uses the Security Zone in Internet Explorer 4.0 or later. If the computer name contains a period (.), as it does when you use the FQDN or IP address, it is by definition in the Security Zone. The default setting for the Internet Zone is Automatic logon only in Intranet Zone.

If you use a computer name without a period (.) in the name, it is by definition in the Intranet Zone.



RESOLUTION
If you cannot change the computer name so that it does not contain a period (.), change the default setting for the Internet Zone from Automatic logon only in Intranet Zone to Automatic logon with current username and password. Because Fltrdmn.exe will search for this setting under both HKEY_CURRENT_USER and HKEY_LOCAL_MACHINE, it is recommended to change the setting under HKEY_LOCAL_MACHINE, because it will work independently of the current logged-on user.

WARNING: If you use Registry Editor incorrectly, you may cause serious problems that may require you to reinstall your operating system. Microsoft cannot guarantee that you can solve problems that result from using Registry Editor incorrectly. Use Registry Editor at your own risk.

To make the change under HKEY_LOCAL_MACHINE, go to the following registry key:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3

Change the 1A00 value from decimal 131072 to 0.



MORE INFORMATION
Another option is to add the secured site to crawl to the Trusted Sites Zone instead of modifying the default settings for the Internet Zone.

To read more about the different Internet Explorer Security Zones settings stored in the registry, see the following Knowledge Base article:

182569 Description of Internet Explorer Security Zones Registry Entries

Additional query words: ntlm ntcr

Keywords: kbprb kbpending KB236154

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.