Menu
I'm a bit confused about how ASP.NET, what user it runs under? On iis 7.5 and on 6.0
A few of the user accounts that I'm not clear on are
Any clarification on the different users would be appreciated and security considerations/etc.
214
On a Web server running Microsoft Windows Server 2003 and Internet Information Services (IIS) 6.0, the ASP.NET process runs in the application pool for the Web application. The application pool defines the identity that ASP.NET runs under (by default, the NETWORK SERVICE account).
IIS 6 - by default, application pools run under the Network Service account which is a member of IIS_WPG group.
ASP.net Machine Account. This account is created as an Administrator account and in some cases, it was reported that the account requires a password to log in. The user account is not deleted and this account is added as a second user account.
What is Worker Process? "The "Process" which is responsible for processing Asp.net application request and sending back response to the client , is known as "Worker Process". All ASP.NET functionalities runs within the scope of this process."
In summary:
ASPNET accountNetwork Service account which is a member of IIS_WPG groupNetwork Service ApplicationPoolIdentity which maps to an account IIS APPPOOL\ApplicationPool (e.g. IIS APPPOOL\DefaultAppPool). This account is a member of IIS_IUSRS user groupAnd it's a good practice to create a custom low-privileged account to run your application especially on PROD environment or when you need to access the network from the application.
164
ASP.net by default runs underneath the IIS_IUSRS user group. So if you need to grant permission to allow your application to run, use that group.
27
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
