IIS7 folder permissions

I build a basic WCF service that I now want to host in IIS7 under Windows Server 2008 R2.

I added the service as an application under the default web site but whenever i try to run the application I get the following error:

HTTP Error 500.19 - Internal Server Error The requested page cannot be accessed because the related configuration data for the page is invalid.

Config Error - Cannot read configuration file due to insufficient permissions

The only way I can get this service working is if i choose to "connect as" the server Administrator when adding the service. the "application user (pass-through authentication)" option does not seem to work.

Could anyone help me out, I've just started using IIS7 and have no idea what to do... Thanks


Solution 1:

Its a permissions issue, and its a two fold problem you need to solve (depending on what your goals are).

  1. You need to determine if this site should be anonomous, or if you want a password. 1a. If you want authentication, you need to determine if you want it to be integrated or basic. If you go with basic, you'll want an SSL cert. if you go with integrated, bear in mind by default NTLM is limited to a single hop for authentication. So if you need the user logging into, to access a remote file share or a SQL server (authenticating as themselves not as the app pool), you'll need kerberos (which has its own level of complications)

  2. You need to make sure your NTFS permissions are setup for the directory your pointing IIS at.