Administering Security Settings on Windows Objects

Parallels Plesk Panel has a built-in mechanism for customizing security settings for Windows objects on the server disks. You can specify security rules and then have Parallels Plesk Panel automatically apply the rules to Windows object security settings. The security files are easily accessible, and once you understand the logic of their use, you can readily customize security settings on any folder or file found on a Parallels Plesk Panel server.

Incorrect security settings on Windows objects found on Parallels Plesk Panel servers may result is a number of server problems including but not limited to unavailability of site application and services. We recommend that you become acquainted with this section before attempting to modify security settings on folders and files found on Parallels Plesk Panel server.

Parallels Plesk Panel creates different Windows user accounts to manage servers and to serve Internet requests by IIS. Parallels Plesk Panel has to assign the user accounts necessary permissions to access and manage Windows objects on managed servers. When assigning user account permissions, Parallels Plesk Panel exercises two different security policies towards Windows objects - Disk security and Hosting security. Security settings for all Windows objects on a Parallels Plesk Panel server are initially configured according to the policies during Parallels Plesk Panel installation. Server compliance with the policies ensures the maximum security of the Parallels Plesk Panel server without compromising server performance. The Windows objects security settings can be further customized. To manage object security settings, Parallels Plesk Panel has implemented a flexible system based on Parallels Plesk Panel's own security metadata files and the DACL inheritance mechanisms implemented in Windows. Security settings can be customized by using the Parallels Plesk Panel security metadata files and Parallels Plesk Panel creation utilities that are distributed with Parallels Plesk Panel.

Warning: Before making any changes to the security metadata, make a backup copy of the metadata file that you want to modify. For information why backing up security metadata files before modifying them is a good idea, see "Customizing Disk Security" and "Customizing Hosting Security" sections.