Windows IIS Application Pool Strategy
This section will explain how to change the user-defined password for IIS Anonymous Authentication using Application Configuration and Trigger.
WinRM service must be installed on those servers.
IIS information must be configured for this option, and the following example should be used.
The Application Pool for password change must be selected, and the user value must be assigned.
An Application Trigger Config definition must first be made for this option.
- Navigate to the Secrets > Configurations > Application Configuration.
- Click the +Add button.
- Enter the parameters.
- Windows IIS Application Pool is selected as the Strategy.
- The Windows IIS Application Pool will use the WinRM service; therefore, WinRM port information must be entered.
- Select NTLM as the WinRM Authentication Method and click the Save button.
- Navigate to Secrets >Application Management screen.
- Click the +Add button.
When the password of the Vault account is changed, reset, or updated, in Windows IIS Application Pool a trigger is defined so that the password defined for the trigger is also changed automatically. Enter the name of the trigger in the Name field. Select the Application Configuration that defines the name above definition.
The IIS Application Pool Name field must be entered from IIS.
- For the IIS changes to be active, a Restart operation may be required on the IIS side. If you want to restart, set the Restart-Service After Command Run switch box to On. But remember that all users will close their sessions at this time.
- Select the Vault Account defined in Password Vault and whose password we want to change.
- If the user defined for Password Vault is an authorized user to make changes on IIS, the Use Authentication User switch box is turned off. If it is not an authorized user, the Name and Password information of the Administrator user must be entered in the relevant fields.
- The Target Type value should be selected as Single Device.
- The device information where IIS is installed and the device to be modified must be selected.
- If all field values are entered, Click the Save button and the configuration will be completed.
- The Vault screen must be opened, and the Vault account must be selected.
- Click the Action button and a new popup will be shown.
- If Reset Password or Update Password is clicked, the system will change the password information from Windows Local User or Active Directory for the selected account. Additionally, a new Application Trigger record will be created by the system to change the password on the IIS server.
- The Application Management screen must be opened, and the defined record must be listed. To start this record and change the password from the IIS site immediately, the Run button must be clicked. Otherwise, the Application Trigger job will automatically run this record according to the defined period.
