In IIS 6.0 ASP.NET uses the web application pool process identity. This
account is used as the identity of the w3wp.exe process, and also to access
resources off the harddisk (eg read .aspx files)
Other applications (eg Classic ASP) use:
- web application pool identity to run each w3wp.exe process
- IUSR_<machinename> as the user account to impersonate when someone
requests the resource (and anonymous auth is allowed).
The Machine\ASPNet account, and Machine\IWAM_<computername> accounts are not
used *unless* you switch IIS to using "IIS 5.0 Isolation Mode" rather than
the native IIS 6.0 Worker Process Isolation Mode.
Cheers
Ken
"Z D" <NOSPAM.TakeThisOut@NOSPAM.com> wrote in message
news:ek1454RMEHA.3348@TK2MSFTNGP09.phx.gbl...
: Hello,
:
: I've recently upgraded to IISv6.0 and I have a few questions about all the
: different options for user accounts.
:
: So far, I've noticed that you can configure user accounts in the following
: places:
:
: 1) The application pool. Each application pool can have a security
account.
: From what I can tell, this generally defaults to "Network Service".
:
: 2) Directory Security "Anonymous Access" user account.
:
: 3) ASPNET user account
:
:
: SO - my question is: How do the above relate to each other? If I assign
NTFS
: permissions, which order is the above processed in?
:
: For example, our IIS box runs alot of ASP.NET (.aspx) pages. When I run
a
: piece of code, which of the above 3 accounts will it run under? What is
the
: difference between them (esp. 1&3).
:
: Thanks in advance, and sorry for my newbie question.
:
: -ZD
:
: >> Stay informed about: IIS6 & User Accounts Confusion 
FAQ
Profile
Private Messages
Log in
