Re: slow iis 6.0 performance
From: Param R. (pr_at_nospam.com)
Date: 12/09/04
- Next message: Kristofer Gafvert: "Re: Can not see the SMTP in IIS Manager."
- Previous message: Keith Langmead: "Re: Authomatic authentification"
- In reply to: Egbert Nierop \(MVP for IIS\): "Re: slow iis 6.0 performance"
- Next in thread: Egbert Nierop \(MVP for IIS\): "Re: slow iis 6.0 performance"
- Reply: Egbert Nierop \(MVP for IIS\): "Re: slow iis 6.0 performance"
- Messages sorted by: [ date ] [ thread ]
Date: Thu, 9 Dec 2004 11:10:13 -0600
I set the identity of the application pool to a domain user account. You are
referring to the setting on a per website level for anonymous connections.
thanks!
"Egbert Nierop (MVP for IIS)" <egbert_nierop@nospam.invalid> wrote in
message news:ubN$ivf3EHA.404@TK2MSFTNGP10.phx.gbl...
> "Param R." <pr@nospam.com> wrote in message
> news:%23E3F9BY3EHA.3236@TK2MSFTNGP15.phx.gbl...
>> So you would recommend running Web Servers outside the domain? Now
>> imagine a server farm. Wouldnt administration be a royal pain.
>
> not neceseraly
> In your domain controler, you set a server property where servers trust
> each other, so in SQL server, you can expect the IUSR account to be the
> same as NT AUTHORITY\ANONYMOUS LOGON
> on windows 2003 NT AUTHORITY\NETWORK SERVICE. But in this case, the SQL
> server should not be part of a local domain but dedicated to the
> webserver.
>
>
> ps: your prev. question. IIS_WPG on the DC is part of the DC policy and
> not part of the -domain policy- so if your webserver is -not- a DC, your
> IUSR account might suck performance.
>
> Cheers,
>
>> thanks!
>>
>> "Leythos" <void@nowhere.org> wrote in message
>> news:MPG.1c213957ea138acc989c1d@news-server.columbus.rr.com...
>>> In article <#Oo5tLW3EHA.3336@TK2MSFTNGP11.phx.gbl>, pr@nospam.com
>>> says...
>>>> Well what if the back-end database security is controlled by domain
>>>> user
>>>> accounts and if I need my web app to authenticate as a domain user
>>>> against
>>>> the database? In that case I would need to use some sort of
>>>> impersonation,
>>>> which is what it was designed to do in the first place..
>>>
>>> I know that you didn't wan to hear it, but if the users have domain
>>> accounts, then why not let them VPN into the network, or provide a
>>> secure server for them to access. I've never liked the idea of having a
>>> web server as part of the domain, and even with government systems we
>>> don't do it.
>>>
>>> Since you only mentioned DB access, there is nothing that you can't do
>>> with login/user information provided in the app, that you can't do with
>>> domain accounts.
>>>
>>> --
>>> --
>>> spamfree999@rrohio.com
>>> (Remove 999 to reply to me)
>>
>>
>
- Next message: Kristofer Gafvert: "Re: Can not see the SMTP in IIS Manager."
- Previous message: Keith Langmead: "Re: Authomatic authentification"
- In reply to: Egbert Nierop \(MVP for IIS\): "Re: slow iis 6.0 performance"
- Next in thread: Egbert Nierop \(MVP for IIS\): "Re: slow iis 6.0 performance"
- Reply: Egbert Nierop \(MVP for IIS\): "Re: slow iis 6.0 performance"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
