The IIS Application Pool user (iisservice in our examples) must also have permission access the Tomcat IIS
connector. Grant this user permission to the \config\wsconfig\ directory in your ColdFusion installation
directory.
Folder
{coldfusion-home}
{coldfusion-home}
{coldfusion-home}/config/wsconfig/
{coldfusion-home}/cfusion/wwwroot/CFIDE
The ColdFusion IIS connector writes logs to a file called isapi_redirect.log - the IIS Application Pool
user (iisservice in our example) needs write permission to this file. You may consider changing the location of
this file, which is defined in the isapi_redirect.properties file to a directory elsewhere.
Note: if you choose to run Anonymous Authentication through the Application Pool user then IUSR does not
need permission to these files.
Note: if you are setting up multiple instances of ColdFusion or multiple connectors you will need to repeat this
step for each connector. Each connector instance is placed in a subdirectory of {coldfusion-
home}/config/wsconfig/ with a number (starting with 1 by default).
Permission
Full Control
Full Control
•
List folder / read
data
•
Read attributes
•
Read extended
attributes
•
Read permissions
•
List folder / read
data
•
Read attributes
•
Read extended
attributes
•
Read permissions
42