Changing the Account used for Anonymous Authentication

You can change the account that is used for Anonymous authentication in the Internet Information Services snap-in, either at the Web server service level, or for individual virtual directories and files. The anonymous account must have the user right to log on locally. If the account does not have the Log On Locally permission, IIS will not be able to service any anonymous requests.

The IIS installation specifically grants the Log On Locally permission to the IUSR_computername account. The IUSR_computername accounts on domain controllers are not given to guest accounts by default and must be changed to Log On Locally to allow anonymous logons.

Note

• If you change the IUSR_computername account, the changes will affect every anonymous HTTP request that is serviced by a Web server. Use caution if you modify this account.

Copyright © 2005 Microsoft Corporation.
All rights reserved.