Skip to main content

Set Permissions for the Web Gateway Components

Set Permissions for the Web Gateway Components

By default, IIS does not allow the user of a web application access to anything outside of the web document root directory (usually C:\Inetpub\wwwroot). To provide access to web application resources located in a directory outside of the web document root, the following user groups must possess Read, Write, and Execute permissions for the directory:

  • [machine_name]\IIS_IUSRS, the user group under which IIS worker processes and applications controlled through IIS (such as the Web Gateway) operate.

  • [machine_name]\Users

You must manually set these permissions for the Web Gateway directory (usually C:\Inetpub\CSPGateway) and for any directory containing static files which a web application serves. To do so:

  1. In the Windows File Explorer, navigate to the directory’s parent directory. For example: if you are configuring the C:\Inetpub\CSPGateway directory, navigate to navigate to C:\Inetpub.

  2. Right-click the directory name and select Properties.

  3. Select the Security tab.

  4. Select Edit.

  5. Select Add.

  6. In the Enter the object names to select text box enter:

    [machine_name]\IIS_IUSRS

  7. Select Check Names and OK.

  8. Select [machine_name]\IIS_IUSRS in the Group or Usernames window, then:

  9. Assign Read & Execute and Write permissions in the Permissions window.

  10. Select Apply and OK.

  11. Repeat the above process for the [machine_name]\Users user group.

If the Web Gateway configuration file (CSP.ini) or the Web Gateway log file (CSP.log) is located elsewhere within your file system, you must also ensure that the IIS_IUSRS group has full read and write permissions for these files.

Next sectionRegister the Native Modules
Previous sectionEnable IIS
FeedbackOpens in a new tab