Changing the Account Used for Anonymous Authentication

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1

You can change the account that is used for Anonymous authentication in IIS Manager, either at the Web server service level or for individual virtual directories and files. You can also change the security settings for the IUSR_computername account in Windows by using the Group Policy Manager snap-in of the Microsoft Management Console (MMC). However, if the anonymous user account does not have permission to access a specific file or resource, your Web server will refuse to establish an anonymous connection for that resource. For more information, see Securing Sites with Web Site Permissions.

Procedures

To change the account used for anonymous authentication

1. In IIS Manager, double-click the local computer; right-click the Web Sites folder, an individual Web site folder, a virtual directory, or a file; and then click Properties.

   Note

   Configuration settings made at the Web Sites level are inherited by all of the Web sites on the server. You can override inheritance by configuring the individual site or site element.

2. Click the Directory Security or File Security tab, and then, in the Authentication and access control section, click Edit.

3. Select the Enable anonymous access check box.

4. Click Browse and type or browse to the valid Windows user account that you want to use for anonymous access.

5. Click OK three times.

Related Information

• For information about enabling anonymous authentication, see Enabling Anonymous Authentication.

• For information about other types of authentication, see Authentication in IIS 6.0.