Re: IIS -> SQLServer on another machine

From: Timo (timo_at_anonymous.com)
Date: 03/24/04 

Date: Wed, 24 Mar 2004 14:12:03 -0500

We have taken option #2 from the post below (thank you Kevin). But what
should we be seeing in EventViewer/Security in the "user" column under those
circumstances? We're seeing SERVER2$ rather than the domain username we have
supplied. Is that expected behavior?

to recap: SQL Server 2000 running on Server1
               IIS 6.0 running on Server2
               Windows2003 / ActiveDirectory

We did this:
 --edited the processModel section of machine.config setting userName to a
domain user with SQL logon and dbaccess rights, let's call it SQL_USER
-- supplied OURDOMAIN\SQL_USER as the "anonymous" user in the IIS dialog
-- edited machine.config: setting impersonate="true"
userName="OURDOMAIN\SQLUSER" password="pwd"
--Then we rebooted the machine on which IIS is installed
-- granted OURDOMAIN\SQL_USER read/write/modify rights to the ASPNET
temporary directory

With EventViewer->Security running on Server1 (the SQL Server), we look to
see who is trying to access the SQL machine from the IIS web pages.
Invariably the user appears as "SERVER2$" not as SQL_USER. What should we
see in EventViewer/Security on Server1? Is our reconfiguration of the
default ASP.NET user incomplete?

Thanks
Timo

"Kevin McDonnell [MSFT]" <kevmc@online.microsoft.com> wrote in message
news:lygZpHREEHA.3568@cpmsftngxa06.phx.gbl...
>
>
> 316989 PRB: "Login Failed" Error Message When You Create a Trusted Data
> http://support.microsoft.com/?id=316989
>
> - Programmatically change the security context of the ASP.NET worker
> process to a user who has the correct SQL Server permissions. -or-
>
> - Change the default configuration of ASP.NET so that the ASP.NET
> worker process starts and runs under the context of a user who has the
> correct permissions in SQL Server. -or-
>
> - Grant the correct permissions on SQL Server so that the aspnet_wp
> account (or NetworkService account, for an application that runs on IIS
> 6.0) has the appropriate access to the required resources.
>
>
> 317012 INFO: Process and Request Identity in ASP.NET
> http://support.microsoft.com/?id=317012
>
>
>
> Thanks,
>
> Kevin McDonnell
> Microsoft Corporation
>
> This posting is provided AS IS with no warranties, and confers no rights.
>
>
>

Relevant Pages

  • Re: CompanyWeb problem
    ... Based on the fact that I didn't have IIS Manager available (I posted after ... Computer: SERVER1 ... see Help and Support Center at ... Event Source: NNTPSVC ...
    (microsoft.public.windows.server.sbs)
  • Re: OWA Not Working on one Server
    ... could point to an IIS issue. ... The other thing to check is that Exchange Virtual Directory is set to run in ... the Exchange Application Pool and that the Exchange Application Pool is set ... > Server1 is for staff and Server2 for students. ...
    (microsoft.public.exchange.connectivity)
  • Re: SQL on one machine, IIS6 on another: authentication troubles
    ... Do you want all ASP.Net access to be done under a single user account? ... the Domain user account (since ASP.Net on IIS6.0 uses the Web App Pool ... Server1 also has an IIS server of its own, ...
    (microsoft.public.inetserver.iis.security)
  • Query on IIS SMTP installed on W2008 server
    ... We have a Windows 2008 server (Server1) running an application, App1, ... should be using its own SMTP engine to send the messages, ... the mails are no longer being recv'd...we checked the ... The vendor is saying there maybe a conflict with IIS SMTP installed on ...
    (microsoft.public.inetserver.iis.smtp_nntp)
  • Re: Replication error 18482
    ... The first column in the output is the internal SQL Server name. ... select @@servername returns SERVER1 ... Could not connect to server 'SERVER1' because 'SERVER2' is not defined as a remote server. ... Then on your publisher disable replication and then re-enable it to use the remote distributor. ...
    (microsoft.public.sqlserver.replication)