In summary:
- IIS 5.1 (Windows XP) – it’s a local
ASPNET
account - IIS 6 – by default, application pools run under the
Network Service
account which is a member ofIIS_WPG
group - IIS 7.0 – still
Network Service
- IIS 7 SP2 / 7.5 – runs under an ephemeral thing called
ApplicationPoolIdentity
which maps to an accountIIS APPPOOL\ApplicationPool
(e.g. IIS APPPOOL\DefaultAppPool). This account is a member ofIIS_IUSRS
user group - ASP.NET Web Development Server (Cassini) – it’s obviously your own account
And it’s a good practice to create a custom low-privileged account to run your application especially on PROD environment or when you need to access the network from the application.