Web deployment clarification! (6/29/2006)

This is the clarification request I received form our dear friend Mr. Moustafa Arafa.
Dear Ali
 regarding your article "Typical deployment scenario", you have mentioned that we will create a domain account to be used by the application poll for our web application, but the question here is : most of companies, they have policies to renew the password for all AD accounts maybe within 2 months max..... should I have to go to the IIS again and re-type the new password every renewal process from AD ?

Dear Moustafa
 The answer is NO. When you create a domain account or even a windows account you have a checkbox as Password never expires that once checked it overrides the group policy for password change. So let's say regardless of group security policy settings, a typical account assigned to an application pool or even a service account MUST be configured as follows:

- Make sure you put a Description that tells the network administrators that this is a service account or an application pool account so they do not delete it by mistake.
- User must change password at next login MUST be unchecked. Simply because an application pool cannot reset it's password. I just mention it because it if the default network administrators mentality that the user must reset his/her password at first login and usually as a developer you do not create user. If this option is not checked you web application stops working when the password expires and when you reset the password in this case you have to reset in for the application pool again.
- Password never expires should be checked to override the group policy for changing the password after a certain duration.
This setting is good enough for an application pool account, but if you want to use an active directory account for a service you still need some more settings that I will cover it in my next post.

By: emai1l@gmail.com  
MeWIrj There is definately a great deal to learn about this subject. I love all of the points you made.
URL: emai1l@gmail.com  
By: Fitflop Flat Shoes  
Usually I don't read article on blogs, but I wish to say that this write-up very forced me to try and do it! Your writing style has been amazed me. Thanks, quite nice article.
URL: http://www.fitflopssaleclearanceuk.com/fitflop-flat-shoes-c2.html  
By: buy fifa 17 coins  
Hold it!
URL: http://study.benchmark-insight.com/blogs/post/24083  
it is very useful for me searching on this site!
URL: http://myvajra.com/pals/blogs/entry/Pre-Ordered-NBA-2K17-Early-Tip-Off-Edition-And-Now-Available-To-Download  
By: fifa coins  
You bet !
URL: http://en.donkr.com/blog/post/discuss-can-fifa-17-complete-replays-and-a-gallery-213091  
By: fifa 17 coins for sale  
nice going!
URL: http://www.prfree.org/news-new-century-frostbite-come-into-fifa-17-271518.html  
By: fifa 17 points  
hi!this is very nice site!
URL: http://u4fifa.weebly.com/home/how-to-get-free-fifa-17-points  
By: best fut 16 coins pc seller  
How come you are working here?
URL: http://www.fifa16mall.com/fifa-16-coins/PC-2113  
By: cheap bns gold  
I have no idea what you have said
URL: http://radiusnyc.com/profiles/blogs/how-to-farm-hm-skills-in-blade-soul  
Your name: