Service Account Required Permissions
THIS ARTICLE APPLIES TO:
ISSUE DESCRIPTION:
The Service Account on the Knowledgebase server will need specific permissions in order to function correctly.
ROOT CAUSE:
SOLUTION OR WORK AROUND:
Knowledgebase.net
- ASP.NET - Full Control
- Internet Guest Account - Full Control (non active directory implementations)
- Network Service - Full Control
AD Account (readonlysvc) – Only need to set this in the LDAP script
KBData
- ASP.NET - Full Control
- Internet Guest Account - Full Control (non active directory implementations)
- Network Service - Full Control
- AD Account (readonlysvc) – Only need to set this in the LDAP script
All Internal and External Users need to have the following permissions:
(x below represents the drive letter where the folders may be found.)
Read/Execute permission to the folder that contains the ASP files for the ClientPortal web site:
-
x:\Program Files\KnowledgeBase.Net\knowledgebase\applicationprogram\ui\http\ClientPortal
Note: This enables Internal Users to view or execute the administration and authoring activities that are granted by Internal Access Profiles created and maintained in the KB Admin Control Panel.
Read/Execute permission to the KBData folder at the location configured during the Talisma KB installation:
- x:\KBDATA
Note: This is the folder where the content and meta files are stored.
Write permission to the following folder and its sub-folders:
- \ProgramFiles\Knowledgebase.Net\
Web site Permission Settings for the Client and Customer Web Sites:
Note: Remove Digest Authentication
Customer Portal Properties
Client Portal Properties
ISAPI Filter Settings
App Pool for the Client Portal
App Pool for the Customer Portal