Securing your web server against attacks is one of the most important jobs the network administrator can do. Blackbaud can not be held responsible for any unauthorized access to your web server. It is highly recommended that you consult with a professional Internet Security engineer to ensure you have fully secured your web server. Please review the attached links from Microsoft for basic information on securing Microsoft Web Servers.
Note: We provide links to third-party websites in an effort to help you resolve your issue. We are not responsible for the information on third-party websites, and we cannot assist in implementing the solutions on these websites.
Note: After modifying NTFS permissions, restart the IIS Admin Service (BB41378) so the changes will take effect.
For Blackbaud NetCommunity File and Directory Permissions, reference the table below for the required NTFS permissions for the NETWORK SERVICE account.
R = Read
RX = Read & Execute rights
RXW = Read, Execute, & Write rights
RXWM = Read, Execute, Write, & Modify rights
FULL = Full rights
Set the following permissions for the IUSR_Machinename account:
Set the following NTFS permissions on the Network Service account if you are using Online Campus Community:
Note: When setting advanced permissions for the Blackbaud directories, mark the Replace permission entries on all child objects with entries shown here that apply to child objects checkbox. This ensures all subdirectories and files inherit the permissions.
For more information, refer to How to modify NTFS security permissions (BB3124)