|
Custom App Pool using an AD user id and the /3GB switch
By Steve Schofield
The article covers an issue I discovered when troubleshooting why application
pools kept getting Service Unavailable errors while running as a Custom
Application Pool user. Google and Support.microsoft.com have several
articles covering what this error but didn't explain the issue I ran into..
By default, application pools use 'NETWORK SERVICE' as the user id on all
application pools. This is a built-in account provided by Windows.
In a shared hosting environment, this can provide a security risk. The
environment I'm experiencing this issue on is a webfarm. To help keep the
administration at the minimum, we use an Active Directory (AD) user as the
application user. The AD user is a member of a global group that all
application pool users are a member of. This group is added to the local
machines IIS_WPG group. In-order to run application pools, a user has to
be a member of this special local group.
Here is more info on this topic
|
|