Two questions I need some help with please.
Firstly, in my hosts file I have found that it contains 127.0.0.1 for each web app, but also the WFE IP also. Is the IP required or is the localhost address all that is required? Are there any consequences of having both? The DisableLookback check is in place.
Secondly, I have a separate site collection which contains a search center. Access is denied for most users so I have traced this to being the fact that no permissions are granted (I had enabled anonymous access at web app level for use in another site collection). Is the best way to solve this simply by adding NT Authority\Authenticated Users to the site visitors group or should I enable anonymous access for the site collection? Everyone accessing the site will have a user account on the domain.
I'm just keen to ensure that I do things in a 'best practice' way.
No, neither the localhost nor servername/IP are required in the hosts file. Localhost is handled by DNS.
Yes, NT Authority\Authenticated Users or DomainName\Domain Users would both be appropriate. Enabling anonymous is up to you :-)
2012年6月22日 9:41I was under the impression that I at least need the localhost IP address in hosts file so that any requests to WFE1 are handled by that box and no double hop issues occur.
2012年6月22日 13:01版主Nope. If you have any double-hop issues, you have to use Kerberos to resolve it anyways... modifying a host file won't get around that.
- 已标记为答案 Rock Wang– MSFT 2012年6月29日 7:12
Bumping an old thread. Would someone please be able to advise me on the following hosts file entry....
Would there be a problem by specifying both the localhost ip as well as the machine ip address in the hosts file both pointing to the same web application? Is this likely to cause any issues? I simply want to ensure that all requests that hit a specific WFE don't jump to another server.
Is it enough to just specify the localhost IP in this case?