Setting Access to the Application Pools - Legacy Authentication Methods - Foundation 23.1 - Foundation 23.1 - Ready - OnBase - Essential - Premier - Standard - external - Standard - Essential - Premier

Legacy Authentication Methods

Legacy Authentication Methods
Foundation 23.1

To use Active Directory Enhanced authentication, it is recommended that access to the application pools is set to use the Network Service account and the applications running in the application pool are configured to use impersonation. The impersonation account should be a member of the Account Operators group (i.e., have the Account Operator right).

If you are using Active Directory Enhanced authentication and alternate binding credentials are specified, then the alternate binding credentials should have the Account Operator right.


Depending on the network configuration, the application pools need multiple rights to get group information for a user from all relevant domains. In most situations the Account Operators group has sufficient rights to perform this task. Your network administrator can determine a viable alternative to the Account Operators group if it lacks sufficient rights.

To assign a user to the application pools:

  1. Click Start, then right-click My Computer and select Manage to enter the Computer Management console.
  2. Click the plus sign next to Services and Applications.
  3. Click the plus sign next to Internet Information Services.
  4. Click the plus sign next to Application Pools.
  5. Select the Application Pool that the OnBase virtual directory you are configuring uses (AppNet is the default virtual directory for the OnBase web server; AppServer is the default virtual directory for the application server).
  6. Right-click and select Properties.
  7. Click the Identity tab.
  8. Select the Configurable radio button.
  9. Enter the User name and Password for the user you want this application pool to use.
  10. Click OK.
  11. Select File | Exit to exit Computer Management.

Repeat this process for both the OnBase web and application servers, if both servers are installed.