Folder under wwwroot


I have a web application (foo) that lives in wwwroot.

This foo folder has a subfolder that iisusr should read/write/overwrite/delete several xml and xls files. What should be the rights of this iisusr?

LVL 12
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

If I'm understanding your question correctly and you want iisusr to be able to "read/write/overwrite/delete" for the folder in question, you will need to give them "Full Permissions" so the can delete which in turn gives them all the permissions they need to do the rest.

Please note that this is very dangerous and usually not recommended unless A) you know what you are doing under IIS, and B) It is absolutely necessary.
David Johnson, CD, MVPOwnerCommented:
read,write,modify,delete not execute or full
David is right except in the case where there may be script files like ASP or PHP pages in the folder that need to execute programming upon the folder contents. If there are no scripts in the folder and all the application scripts are in the folders above them then execute nor full permissions are not needed, just read,write,modify,delete. If you need execute permissions you can forgo giving Full permissions but you will still need "Read & execute"

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Acronis True Image 2019 just released!

Create a reliable backup. Make sure you always have dependable copies of your data so you can restore your entire system or individual files.

jazzIIIloveAuthor Commented:
What about listing the folders?

Note that the users are just expected to upload files.

David Johnson, CD, MVPOwnerCommented:
iis can have directory browsing disabled.Directory Browsing in iis for uploaded files always have execute disabled or 'not enabled'
jazzIIIloveAuthor Commented:
Yes it is disabled in iis but should i still change 'list directories' under 'properties of the folder' and give right to iisusr?

jazzIIIloveAuthor Commented:

I kept list directories and modify since the application appends to an existing file. Did i do correctly?

Best regards.
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft IIS Web Server

From novice to tech pro — start learning today.