How do I configure SQL Server to allow access via IIS

views:

666

answers:

+1 Q:

How do I configure SQL Server to allow access via IIS

I have a web service that stores data in a local SQL Server 2008 database. If I run the web service under my account the web service can successfully access the database. However, if I use the DefaultAppPool (IUSR) account then accessing the database from the web service fails.

How do I set security on SQL Server to allow access to a specific database via IIS?

The specific error message I am getting is: Login failed for user 'IIS APPPOOL\DefaultAppPool'

+1 A:

I generally run the app pool under a domain user account, that way you control the specific user for each site on your server.

If I can't use a domain account, I'll run the site as "Network Service" - and the user that would correspond to that in SQL would be the machine account (MACHINENAME$ - replace "machinename" with your IIS server name").

If you plan to use the new IIS7 IIS users - which are not windows users - you'll have to use SQL Authentication instead of Windows authentication for your SQL database access.

Scott Ivey 2009-06-30 16:11:30

+3 A:

You have two options (obvious maybe!):

Instead of using Windows Integrated Security use SQL Authentication instead.
If you can't or don't want to, then you have to create a new user in SQL Server that relates to that Windows account.
Or (third option) you can change the web service to run under an account that you know works.

Duncan 2009-06-30 16:47:29

+1. Agreed, use some kind of account (SQL or A.D.) that is specific to this application only. Put that account into a role, set the permissions on the role.

p.campbell 2009-06-30 17:47:40

ansaurus

tags:

views:

answers:

How do I configure SQL Server to allow access via IIS

related questions