Re: Domain-based IUSR and IWAM accounts
From: Jeff Cochran (jeff.nospam_at_zina.com)
Date: 06/29/05
- Next message: Pohihihi: "iis + win2k adv server problem"
- Previous message: RHS: "Digital Certificate on IIS 4"
- In reply to: Steve: "Domain-based IUSR and IWAM accounts"
- Next in thread: Tom Kaminski [MVP]: "Re: Domain-based IUSR and IWAM accounts"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 28 Jun 2005 22:51:15 GMT
On Tue, 28 Jun 2005 09:09:09 -0700, "Steve"
<Steve@discussions.microsoft.com> wrote:
>We have multiple IIS servers throughout our domain. We are constantly
>running into the issue where the GPO overwrites the local account setting,
>which is default by design.
>
>MS Article 275167 states 3 resolutions.
>Option one is to run iisreset, which our OPS dept is tired of.
>
>Option two is not to run the GPO from the root, something our Engineering
>team doesn't like.
>
>Option three is to create domain based IWAM and IUSR accounts and setting
>permissions on each IIS server to the domain accounts.
>
>Are there any known issues with doing this?
Only the security issue tha the account is a domain account instead of
local, with more access. But that's what you want anyway, so it's a
moot point.
Jeff
- Next message: Pohihihi: "iis + win2k adv server problem"
- Previous message: RHS: "Digital Certificate on IIS 4"
- In reply to: Steve: "Domain-based IUSR and IWAM accounts"
- Next in thread: Tom Kaminski [MVP]: "Re: Domain-based IUSR and IWAM accounts"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
