I've been attempting to migrate our intranet websites from a IIS 6 server to Windows 2k12 R2 IIS 8.5 server. However, since all of our applications use Windows Authentication, everyone (except for the server admins) are getting 401 errors.
I've done some research (1, 2, 3, 4) and it seems that you have to setup your NTFS file permissions to allow everyone to read (and optionally write if you are accepting file uploads) to the inetpub/wwwroot folder. This seems like an awful security implementation. Am I missing something here?
