Folder Security Settings

email:

password:

remember? | Login

Home

Installation

1. Installing Sitecore on Vista

2. Requirements

3. EXE Installation

4. ZIP installation

5. Post Installation Steps

5.1. IIS Configuration

5.2. Resolve Security Issues

5.2.1. Root Folder Permissions

5.2.2. Upload Folder Security

5.2.3. Folder Security Settings

5.2.4. Globalization Folder

5.2.5. Temporary Folder Rights

5.2.6. Default User Passwords

5.3. Search Index

5.4. Change Login Title

5.5. Check AntiVirus

6. Upgrading Sitecore

7. Troubleshooting

Valid for Sitecore 5.3.2, 5.3.1

Folder Security Settings

Prev Next

To allow file uploading and modification of the site, grant the ASP.NET user Read/Write rights to the following folders:

/data
/upload
/temp (if this directory does not exists immediatly after installation, create it).
/sitecore/shell/Applications/debug (if this directory does not exist immediately after installation, create it).
/sitecore/shell/Controls/debug (if this directory does not exists immediately after installation, create it).
/layouts (If Developer Center will be used to create and modify layouts and sublayouts).
/xsl (If Developer Center will be used to create and modify XSL renderings).
/App_Data/

In order to maintain the search indexes ASP.NET and IUSR_* users also require the modify access rights to the following folder:

/indexes

Both the ASP.NET and IUSR_* users require Read and Write access rights to the following folders:

/audit
/logs
/viewstate
/mediacache
/diagnostics

For custom XML controls, all directories specified in the ControlSources section of web.config must contain a debug folder with Read/Write access by the ASP.NET user.

Note: consider moving the Data folder to a non-public area if not done so yet.

Modifying Security settings for a directory

To update security settings for a directory:

In Windows file system explorer, right-click on the directory and select Properties
Navigate to the Security tab
1. If the Security tab is not visible, which may occur for instance after upgrading Windows XP Home to Professional:
  1. In Windows file system explorer, select Tools » Folder Options
  2. On the View tab, ensure “Use simple file sharing” is not selected
If the account is not visible in the “Group or user names” field:
1. Select Add
2. Ensure “From this location” is set to the local machine
3. Select Locations
4. Type in the account (“ASPNET”, “NETWORK SERVICE” or “IUSR_<machinename>”) and press Check Names OR select Advanced, select Find Now and select the account
Select appropriate permissions for the user in the “Group or use names” field; if the fields are selected but disabled checkboxes then permissions are inheriting correctly from the parent folder
Permissions should be set to inherit; if permission denied errors appear when accessing file system resources:
1. In Windows file system explorer, right-click on an ancestor folder such as WebSite or Data and select Properties
2. Ensure security is set correctly for the IUSR_* and ASP.NET users
3. Select Advanced under “For special permissions or for advanced settings”
4. Select both “Allow inheritable permissions…” and “Replace permission entries” checkboxes

Prev Next

webmaster@sitecore.net