I have this error at Best Practises Analyzer in IIS section. May I ignore it?
Application pool is set to run as an administrator, as local system, or to 'Act as part of the operating system'.
The application pool can execute high-privileged code, including potentially malicious code that can negatively affect your server.
Set the application pool to run as the application pool identity.
When I solve this error, I must type my credentials for access for example OWA login screen.
Basic authentication is enabled for configuration path 'MACHINE/WEBROOT/APPHOST' but it lacks a required SSL binding.
If you use Basic authentication without SSL, credentials will be sent in clear text that might be intercepted by malicious code.
Use Basic authentication with an SSL binding, and make sure that the site or application is set to require SSL. Alternatively, use a different method of authentication.
I have already set require SSL to all, but this error is still here.