Configuring IIS 6.0 Properties That Reference Local User Accounts
Applies To: Windows Server 2003, Windows Server 2003 with SP1
The configuration of IIS and the Web sites on the source server can reference user accounts that are stored in the local account database on the source server. These accounts that are stored locally on the Web server are known as local user accounts. Local user accounts are valid only on the Web server where they are stored, not on any other Web servers.
As a result, when IIS, or any of the Web sites on the source server, reference local user accounts you must configure IIS 6.0 and the Web sites on the target server to reference:
Domain-based user accounts that you create
Local user accounts that you create on the target server
For each configuration that references a local account on the source server, you need to do the following on the target server:
Create, or designate, a domain-based or local user account that you can use to configure IIS.
For more information about creating a service account that is domain-based or local to the target server, see Create a Service Account.
Modify the IIS 6.0 properties, Web site properties, or content configuration settings, based on the type of property that you are configuring.
The types of IIS 6.0 properties, Web site properties, or content configuration settings that can reference or use local user accounts include:
NTFS permissions assigned to Web content. Grant the same NTFS permissions to the account created in step 1on the target sever as were granted to the local user account on the source server. For more information about granting NTFS permission to content, see Configure NTFS Permissions.
Anonymous accounts for Web sites. Configure the anonymous account identity for a Web site to use the account created in Step 1 on the target server. For more information about configuring the anonymous account identity, see Configure Anonymous User Identity.
Application isolation settings. Configure the application isolation identity based on the application isolation mode configured for the server.
When the target server is configured to run in worker processor isolation mode, configure the identity properties of the application pools. For more information about configuring the application isolation settings when the target server is configured for worker process isolation mode, see Configure Application Pool Identity.
When the target server is configured to run in IIS 5.0 isolation mode, configure the identity properties of the COM+ applications that correspond to the Web site. For more information about configuring the application isolation settings when the target server is configured for IIS 5.0 isolation mode, see Configure Application Isolation Settings for IIS 5.0 Isolation Mode.