We are suing the latest Windows Server versions, latest IIS and latest SQL server versions. For security reasons IIS and Sql Server run on separate machines, all domain joined.
This following article sais that its good to use the Network Service account when you need to access a SQL server over the network.
http://www.iis.net/learn/manage/configuring-security/application-pool-identities
Is this really what we should do? The network service account has much more permissions than the virtual accounts introduced for the application pools.
What the best from a security point?We want do used integrated security for sql authentication.
Are there any other good tutorials? The most I have found on the internet are very old and targeted to older IIS and Windows Server versions.
Thanks,
Alex