Issue with IIS 6.0 Application Pool Identity

jgk1701 posted on Wednesday, September 13, 2006

I am having an issue setting up the application pool identity account in IIS 6.0.

I want the account to be a domain user account (DOMAIN\AppDev for this example) instead of one of the built in local accounts because the SQL Server database is on another server. 

I have added DOMAIN\AppDev to the local machines IIS_WPG group so that account will have the privileges necessary to execute a worker process.  I have setup the SQL Server to allow logins from DOMAIN\AppDev, etc.  The dataportal's config file has the proper connection string.  When I run the client app, I get the following exception:

Exception Type: System.Net.WebException
Status: ProtocolError
Response: System.Net.HttpWebResponse
Message: The remote server returned an error: (401) Unauthorized.TargetSite: Void HandleReturnMessage(System.Runtime.Remoting.Messaging.IMessage, System.Runtime.Remoting.Messaging.IMessage)
HelpLink: NULL
Source: mscorlib

The inner exception is

Exception Type: System.ComponentModel.Win32Exception
NativeErrorCode: -2146893022
ErrorCode: -2147467259
Message: The target principal name is incorrect
TargetSite: Byte[] GetOutgoingBlob(Byte[], Boolean ByRef)
HelpLink: NULL
Source: System

The client app is configured to use Windows authentication.

Any help will be greatly appreciated.

Thanks,

 

Jeff

guyroch replied on Wednesday, September 13, 2006

Not sure if this will help but have you signed your assembly by including a .snk file to your Csla projects?

jgk1701 replied on Thursday, September 14, 2006

Yes.

Can anyone help me out there?

Thanks,

Jeff

RobKraft replied on Thursday, September 13, 2007

I just ran into this.  To get it to work at the moment, I changed the config of my WebApp in IIS.  I allow anonymous access.  I don't think this is how I want to deploy it in production, but it works for the moment.