This release includes the following changes:
Fixed: When ASP.NET impersonation was used via <identity impersonate=“true” … /> tag
in web.config, when accessing temporary folder impersonation was being reverted “just in case”.
This will not be done anymore because it cause access errors in some cases.
More info about ASP.NET impersonation:
Actually the user in <identity> tag already has to have permissions on “Temporary ASP.NET Files” because
ASP.NET runtime throws an error on startup so we can assume the user can already access
if the application is running.
<identity impersonate=“true” /> (no user) impersonates IUSR when Anonymous Authentication is used
and suprisingly IUSR is not member of IIS_IUSRS, only app pool identities are (via automatic injection).
When Windows Authentication is used, this will be the logon user.
So you are responsible for adding any impersonated user including IUSR
to IIS_IUSRS group to grant “Temporary ASP.NET Files” access.
After adding IUSR to IIS_IUSRS group, you need to run “iisreset” in Administrator Command Prompt.
This is because changes to user’s group membership are not effective until the next time the user
If you are running the app pool as a domain user, the rules change on the automatic
injection of IIS_IUSRS token into the process at startup.
Solution: Create a new active directory user group named “IIS_IUSERS” in Users OU.
Then join your iis users to this group. After that, adding that user group to
local IIS_IUSRS group solves your problem.
Improved: Document Viewer:
- Improved: Got rid of HTTP headers used in DocumentViewer when downloading the XPZ. Parameters will
instead passed via regular querystring. This will probably fix some random “Invalid XPZ file” errors.
For the full version history of FileUltimate, please see here.
For the full version history of FileVista, please see here.