如何给NT AUTHORITY \ IUSR访问共享文件夹的内容? [英] How to give NT AUTHORITY\IUSR access to shared folder content?
问题描述
我找到的东西有关,但不是一回事。
I find something related, but not same thing.
<一个href="http://stackoverflow.com/questions/1269706/the-error-login-failed-for-user-nt-authority-iusr-in-asp-net-and-sql-server-2">The错误&QUOT;用户登录失败'NT AUTHORITY \ IUSR'&QUOT;在ASP.NET和SQL Server 2008
我的问题是,该文件在网络上共享,我想从本地IIS调试,我发现所有的静态文件似乎是访问被拒绝(401.3)
My issue is that the files are shared on the network, and I would like to debug from local IIS, I find that all static files seems to be access denied (401.3)
我已经使用的跟踪系统,并发现IIS正在访问使用NT AUTHORITY \ IUSR源
I have used the trace system, and find that the IIS is accessing the source using "NT AUTHORITY\IUSR"
Url http://localhost:8451/umbraco_client/panel/images/panel_boxhead_h2_bg.gif
App Pool Debug451
Authentication anonymous
User from token NT AUTHORITY\IUSR
Activity ID
我已经设置为所有人访问的共享文件夹,并改变了应用程序池的身份域管理员。
I have set the shared folder to be accessible to everyone, and changed the application pool's identity to domain administrator.
我也尝试使用网络服务身份,并分配域\计算机名$完全访问共享文件夹...
I have also tried to use 'Network Service' as identity and assign Domain\MachineName$ full access to the shared folder...
在我看来就是IIS总是使用NT AUTHORITY \ IUSR来访问静态种源?如果是这样,我怎么能放弃访问共享文件夹到本地帐户?或者,我怎么能强制IIS使用一些其他的身份?
It looks to me that iis always using "NT AUTHORITY\IUSR" to access static resouce? If so, how can I give access on a shared folder to a local account? Or how can I force IIS to use some other identity?
更新: 因为有一些新的答案,我放弃了当时的这个老问题。我accentually运行Windows 2008 R2,这是我决定在服务器上遇到这种类似的问题再次最近,我想给一些更新。
update: as there are some new answer to this old question which I gave up at that time. I accentually have encounter this similar issue again recently on a server running windows 2008 R2, which I resolved, and I would like to give some update.
我解决这个问题,这个时候通过的添加读权限$计算机名/用户。这似乎只是一个问题的服务器环境,不知道是否与任何组策略或相似类型。希望这可以帮助别人的未来。
I resolve the issue this time by add read permission to $ComputerName/Users. This seems only an issue with server environment, and not sure if related to any group policy or similar kind. Hope this might help someone in future.
推荐答案
在您所配置的应用程序池的用户访问权限的共享文件夹(在Windows中创建一个新用户,并将其添加到IUSER组,并添加specifique访问权限的共享文件夹的用户),您必须在IIS中改变身份认证设置:IIS->站点需要访问 - >身份认证设置 - >匿名authentification->编辑 - >选择aplication池标识(而不是IUSER的)。
Once you have configured the user of the application pool to have access permission to the shared folder ( create a new user in windows and add it to the IUSER group, and add specifique access rights to the shared folder for that user), YOU HAVE TO change in IIS the Authentification settings: IIS->site that need access->Authentification settings -> anonymous authentification->edit->select aplication pool identity (instead of IUSER).
这篇关于如何给NT AUTHORITY \ IUSR访问共享文件夹的内容?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
