Microsoft KB Archive/943621

= The SharePoint Central Administration page is unavailable and Event IDs 2268 and 2214 are logged after you uninstall Forefront Security for SharePoint =

Article ID: 943621

Article Last Modified on 11/20/2007

-

APPLIES TO


 * Microsoft Forefront Security for SharePoint

-



Important This article contains information about how to edit the metabase. Before you edit the metabase, verify that you have a backup copy that you can restore if a problem occurs. For information about how to do this, see the &quot;Configuration Backup/Restore&quot; Help topic in Microsoft Management Console (MMC).



SYMPTOMS
After you uninstall Microsoft Forefront Security for SharePoint, you may experience the following symptoms:   The following events are logged in the Application log: Event Id: 2268

Event Type: Error

Event Source: w3svcwp

Description: Could not load all ISAPI filters for site/service. Therefore startup aborted Event Id: 2214

Event Type: Error

Event Source: w3svcwp

Description: The HTTP Filter DLL C:\Program Files\Microsoft Forefront Security\SharePoint\FSSPUsernameFilter.dll failed to load. The data is the error.  The SharePoint Central Administration page is unavailable.



CAUSE
This issue occurs if Forefront Security for SharePoint leaves a reference to a .dll file, or references to several .dll files, in the metabase when you uninstall the program.



RESOLUTION
Warning If you edit the metabase incorrectly, you can cause serious problems that may require that you reinstall any product that uses the metabase. Microsoft cannot guarantee that problems that result if you incorrectly edit the metabase can be solved. Edit the metabase at your own risk.

Note Always back up the metabase before you edit it.

To resolve this issue, delete any references to Microsoft Forefront Security for SharePoint that exist in the metabase. To do this, follow these steps:  Start the Internet Information Services Manager tool. To do this, click Start, point to All Programs, point to Administrative Tools, and then click Internet Information Services (IIS) Manager. Right-click  (local computer), and then click Properties. Click to select the Enable Direct Metabase Edit check box, and then click OK.</li> Open the Metabase.xml file by using Notepad. To do this, click Start, click Run, type the following command, and then press ENTER:

notepad %systemroot%\system32\inetsrv\metabase.xml

,</li> In the Metabase.xml file, locate and remove the following entry:

<pre class="fixed_text"><IIsFilter Location =&quot;/LM/W3SVC/Filters/FSSPUsernameFilter&quot; FilterDescription=&quot;FSSPUserNameFilter&quot; FilterFlags=&quot;0&quot; FilterPath=&quot;C:\Program Files\Microsoft Forefront Security\SharePoint\FSSPUsernameFilter.dll&quot; FilterState=&quot;4&quot;> </IIsFilter>

</li> Remove any other entries that refer to Microsoft Forefront Security for SharePoint. However, do not remove entries that refer to other Forefront Security products.</li> Save your changes to the Metabase.xml file, and then exit Notepad.</li></ol>

Additional query words: filter ISAPI

Keywords: kbtshoot kbbug kbevent kbuninstall kbexpertiseadvanced KB943621

-

[mailto:TECHNET@MICROSOFT.COM Send feedback to Microsoft]

© Microsoft Corporation. All rights reserved.