in the last recent days i was handle with iis permissions issue,
while trying to send http request from iis application (windows server 2012 r2 IIS 8.5) – I get an exception 401 unauthorized. (SSL Client Certificate Authentication)
when i try to simulate it with different OS (2008 R2 IIS 7.5) – I get 200 OK & everything goes as expected.
after a little research we reached to obtain a local admin to the application pool user to check if the following scenario related to a permissions field .
and guess what? it’s works as we verified – application pool user identity needs a permissions on Manage Private Keys on Local Machine Store certificate Only!
Windows 2012 R2 IIS 8.5 application pool identity User needs full control permissions on:
Manage Private Keys on Local Machine Store certificate :
We would not need a local admin permissions for our application pool identity user on Windows server 2012 R2 IIS 8.5 .