IIS Permissions/accounts etc - advice needed

fromtheinternet · January 30, 2020, 9:11am

What’s the recommended practice for running UD under IIS application pools?

I need to be able to query remote systems, which obviously means using accounts with the correct credentials. I can either run the App pool with domain identity that has the requisite permissions (and modify webroot NTFS permissions, add batch log on rights etc.), or run the pool under the default identity and dip into some kind of credential store to retrieve the user credential.

How is everyone else doing it?

BoSen29 · January 30, 2020, 12:58pm

hi @fromtheinternet!

As of yesterday:
I solve this with @adam 's new module pssecretstore:

Run IIS with the defualt user, and load credentials dynamically from the secret store

Note: this is also the demonstrated method of storing credentials in UA.

fromtheinternet · February 4, 2020, 10:11am

Excellent. I’ll take a look at using this method, as it saves on a bunch of server reconfiguration (and the Change management processes that would entail…).

Topic		Replies	Views
Discussion: Safest Way For powershell remoting from UD Universal Dashboard Help	6	1270	September 2, 2019
Active Directory Dasbhoard - IIS App Pool Identity Universal Dashboard	1	599	June 1, 2020
Service account vs app pool ID in IIS Universal Dashboard Help	2	432	January 11, 2019
Multi-layer authorization on forms \|\| UD 2.5.3 Universal Dashboard Help	3	1142	August 29, 2019
Hosting in IIS (PSU version 1.5.3) - problem with Windows Auth etc Universal Dashboard	0	421	December 9, 2020

IIS Permissions/accounts etc - advice needed

Related Topics