Domain Server Rebuild - Web Service Unavailable in Separate Application Pool

Posted on 2006-04-25
Last Modified: 2008-01-09
I have a web service running on a Windows 2003 server (IIS).  The server is a member server, not a domain controller.  The service must run under a separate application pool because it needs to have additional permissions that the default application pool does not provide.  The web service is setup to run under a separate domain user account name, and the application pool runs under the same account name.

Everything was working fine until the domain server crashed.  Unfortunately, I did not have a backup domain controller, so I had to rebuild the domain controller (now I have a backup controller).  I recreated all of my user accounts, including the one used to run the web service and its application pool.  Now when I try to access the web service through a browser, I get "Service Unavailable".  My web applications that use the service return error 503 Service Unavailable.  If a change the web service to run under the default application pool, the web service will then run, but it does not have the necessary permissions.

I have tried to recreate the application pool and even give it a different name, but I still cannot get the web service to run under the separate application pool.  Does any one know how to fix this?
Question by:ardolino
    LVL 7

    Expert Comment

    When you rebuilt the domain controller the SID changed for the user account even though you estabilished an account with an identical name.  

    You will need to recreate the permissions for the application pool.

    Author Comment

    The only permissions that are needed is that the user must be a member of the Domain Users group.

    I cannot even get an application pool to start up by using the local or domain Administrator account.  Something is wrong and I do not know what it is.

    Author Comment

    I reinstalled IIS and now its working.  Go figure.
    LVL 20

    Expert Comment

    Indeed, SIDs changed..
    reinstalling was one of the options.. but it is a good practice not to use domain accounts in IIS services.. use instead local accounts on local and remote servers with same credentials (user/pass)

    Accepted Solution

    PAQed with points refunded (500)

    Community Support Moderator

    Featured Post

    Find Ransomware Secrets With All-Source Analysis

    Ransomware has become a major concern for organizations; its prevalence has grown due to past successes achieved by threat actors. While each ransomware variant is different, we’ve seen some common tactics and trends used among the authors of the malware.

    Join & Write a Comment

    Suggested Solutions

    Today I came across an interesting issue that had me pulling my hair out.  I was troubleshooting a new internal web site which uses integrated security instead of anonymous.  When browsing the site from my laptop, I was able to access it with no iss…
    Lync server 2013 Backup Service Error ID 4049 – After File Share Migration
    This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…
    In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor ( If you're interested in additional methods for monitoring bandwidt…

    734 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    20 Experts available now in Live!

    Get 1:1 Help Now