I created a MVC4 web application on my laptop using localdb with a mdf. file. I then exported the project to my desktop, and then I copypasted these files over to my webserver on my Win2k12 running IIS.
我在笔记本电脑上使用localdb和mdf创建了一个MVC4 web应用程序。文件。然后我将项目导出到桌面,然后将这些文件复制到运行IIS的Win2k12上的web服务器上。
After copying it I created the tables on the MSSQL Express 2012 server that runs on the same Win2k12 server, and modified web.conf in my project to target the server and not the mdf file.
复制之后,我在MSSQL Express 2012服务器上创建了这些表,这些表运行在相同的Win2k12服务器上,并修改了web。在我的项目中以服务器为目标,而不是mdf文件为目标。
And here is where it all stops, I get the following error when I try to send data (that should communicate with the sql server, browsing pages is fine as long as it does not try to talk to the sql server):
这就是它停止的地方,当我尝试发送数据时,我得到了以下错误(应该与sql服务器通信,只要不尝试与sql服务器通信,浏览页面就可以):
Cannot open database "mc.foo.net" requested by the login. The login failed. Login failed for user 'IIS APPPOOL\mc.foo.net'.
无法打开登录请求的数据库“mc.foo.net”。登录失败。用户“IIS APPPOOL\mc.foo.net”登录失败。
And I'm guessing the user IIS APPOOL is something inherited from my laptop, I don't have this user on thw Win2k12 server. How can I change that? And to what? I have several users (from Security of the server in SQL Server Manager):
我猜用户IIS APPOOL是从我的笔记本电脑上继承来的,我在thw Win2k12服务器上没有这个用户。我怎么才能改变呢?和什么?我有几个用户(来自SQL server Manager中的服务器安全):
- NT AUTHORITY\SYSTEM
- NT AUTHORITY)\系统
- NT Service\MSSQLSERVER
- NT服务\ MSSQLSERVER
- NT SERVICE\SQLWriter
- NT服务\ SQLWriter
- NT SERVICE\Winmgmt
- NT服务\ Winmgmt
In addition to my domain administrators. How can I fix this?
除了我的域管理员。我该怎么解决这个问题呢?
2 个解决方案
#1
0
You can easily change the application pool identity in IIS Manager. On the target application pool (under Root/application pools), select Advanced Settings. The is a Category Process Model, where you can specify pool's identity.
您可以很容易地在IIS管理器中更改应用程序池标识。在目标应用程序池(根/应用程序池)上,选择高级设置。这是一个类别流程模型,您可以在其中指定池的标识。
Built-in account allow you to use Network Service/Local System/... whereas Custom allow you to specify a domain or local user. That's all !
内置帐户允许您使用网络服务/本地系统/…而自定义允许您指定域或本地用户。这是所有!
It's not recommended to give too many privileges on the application pool. This can hurt security of your application and can be sometimes painful to manage. So, I would highly suggest you to use sql authentication for your database and to encrypt connection string.
不建议在应用程序池中提供太多特权。这可能会损害应用程序的安全性,有时管理起来会很困难。因此,我强烈建议您对数据库使用sql身份验证,并对连接字符串进行加密。
#2
0
Your problem seems like the user doesn't have rights on the DB Server.
您的问题似乎是用户在DB服务器上没有权限。
There are multiple ways to go around this.
有很多方法可以解决这个问题。
-
If you are connecting through integrated security to the DB... Change that to a local SQL server or a domain username and password.
如果您正在通过集成安全性连接到DB…将其更改为本地SQL服务器或域用户名和密码。
-
Give your appPool account dataReader or dataWriter access (Not recommended for production).
给您的appPool帐户dataReader或dataWriter访问权限(不建议用于生产)。
#1
0
You can easily change the application pool identity in IIS Manager. On the target application pool (under Root/application pools), select Advanced Settings. The is a Category Process Model, where you can specify pool's identity.
您可以很容易地在IIS管理器中更改应用程序池标识。在目标应用程序池(根/应用程序池)上,选择高级设置。这是一个类别流程模型,您可以在其中指定池的标识。
Built-in account allow you to use Network Service/Local System/... whereas Custom allow you to specify a domain or local user. That's all !
内置帐户允许您使用网络服务/本地系统/…而自定义允许您指定域或本地用户。这是所有!
It's not recommended to give too many privileges on the application pool. This can hurt security of your application and can be sometimes painful to manage. So, I would highly suggest you to use sql authentication for your database and to encrypt connection string.
不建议在应用程序池中提供太多特权。这可能会损害应用程序的安全性,有时管理起来会很困难。因此,我强烈建议您对数据库使用sql身份验证,并对连接字符串进行加密。
#2
0
Your problem seems like the user doesn't have rights on the DB Server.
您的问题似乎是用户在DB服务器上没有权限。
There are multiple ways to go around this.
有很多方法可以解决这个问题。
-
If you are connecting through integrated security to the DB... Change that to a local SQL server or a domain username and password.
如果您正在通过集成安全性连接到DB…将其更改为本地SQL服务器或域用户名和密码。
-
Give your appPool account dataReader or dataWriter access (Not recommended for production).
给您的appPool帐户dataReader或dataWriter访问权限(不建议用于生产)。