Hi there,
IIS7.5 - site using integrated, .net 4, "AppPoolIdentity"
I have to say, I really don't grok "classic/integrated" and all the differences between "Local System", "Network Service" and all the other various options you have for the app pools.
My current issue is that when users hit my site:
Anon = Disabled, Forms = Disabled, Windows = Enabled with both "Negotiate" and "NTLM".
I seem to get in fine, but I am prompted for credentials, others however get 401.2 errors regardless of how many times they put in their username/passwords (however they aren't being locked in AD or anything fun like that)... it Looks like the events are"logged in, logged in, logged in, failed authorization" however I don't have anything fancy in authz just "allow */deny ?"
Also it appears that these aren't even getting to eth server? ( can't see any evidence that they are hitting the server at all... is this an AD thing a DC thing is there something obvious that I'm missing somewhere...???
Thsi may be more than one issue, ideally I'd like to figure out the "setup" thing and whether (and why) I need to setup the app-pools to be running under service accounts rather than the builtins - and if so how do these service accounts need to be configured?
Thanks in advance.