Get your server issues fixed by our experts for a price starting at just 25 USD/Hour. Click here to register and open a ticket with us now!

Author Topic: IIS Accounts security  (Read 11541 times)

0 Members and 1 Guest are viewing this topic.

nirmal

  • Jr. Member
  • **
  • Posts: 56
  • Karma: +0/-0
IIS Accounts security
« on: November 17, 2013, 03:19:39 pm »
Hi all,

How to secure Accounts in IIS                         
               
Remove unused accounts from the server.                            
Disable Windows Guest account.                            
Rename Administrator account and set a strong password.                            
Disable IUSR_MACHINE account if it is not used by the application.                            
Create a custom least-privileged anonymous account if applications require anonymous access.                
Do not give the anonymous account write access to Web content directories or allow it to execute command-line tools.
            
If you host multiple Web applications, configure a separate anonymous user account for each one.                      
Configure ASP.NET process account for least privilege. (This only applies if you are not using the default ASP.NET account, which is a least-privileged account.)          

Enforce strong account and password policies for the server.                            
Restrict remote logons. (The "Access this computer from the network" user-right is removed from the Everyone group.)                   

Do not share accounts among administrators.                            
Disable Null sessions (anonymous logons).                            
Require approval for account delegation.                            
Do not allow users and administrators to share accounts.                            
Do not create more than two accounts in the Administrators group.                            
Require administrators to log on locally or secure the remote administration solution.
   

Thank you
Get your server issues fixed by our experts for a price starting at just 25 USD/Hour. Click here to register and open a ticket with us now!