Minimum folder permissions required for IIS7.5 web site RRS feed

  • Question

  • User-1209852231 posted
    I'm porting a web site from IIS6->IIS7.5, and am struggling to get folder permissions working.

    The app pool identity for the site has been granted read & execute, list, and read permissions to wwwroot, the root folder for the site. (In case it's relevant, the parent folder of wwwroot has more restricted access, granting permissions only to Administrators and SYSTEM.)

    When I browse to the site, I get a 401 Unauthorized Access error. If I grant Users or Everyone read & execute, list, and read permissions to wwwroot, the site loads just fine. I don't want to grant Users access to this folder, however, just whichever accounts IIS requires.

    Is there another account I need to add? If not, any other ideas why it's returning 401?

    Wednesday, February 29, 2012 7:42 PM


  • User-1209852231 posted
    Finally figured it out. In IIS Authentication, Anonymous Authentication was set to "Specific User". When I changed it to Application Pool, I can access the site. Gotta say, there seem to be a lot of moving parts to IIS7.5 security.
    • Marked as answer by Anonymous Tuesday, September 28, 2021 12:00 AM
    Wednesday, February 29, 2012 9:29 PM