Media Libraries on centralized file share

Kathie Zullinger asked on July 14, 2021 18:43

Hi! We are working on rolling out Kentico. In looking at how Media works via the CMS/MVC (goes to both locations in media); I am concerned on how much storage our shared environment will take up with media files. That said, I am thinking of housing all media in a redundant media server cluster for all three environments (staging, dev, prod); to both reduce storage and centralize media across all sites to one server.

With all that said, I believe I need to set up a MGSA (Managed Group Service Account) for IIS, change over the App Pools to use that account; then provide modify access to that share on the media environment for the GMSA.I would also assume that same account will need access to certain folders in the Kentico structure. (I have not identified which ones yet...but know the app data for import/export if we plan on doing this but can add/remove as need to there.) I just really want to lock this down as much as possible.

My question is: 1) is anyone out there doing it this way / any pros/cons? 2) anyone see issue in having a shared app pool account using the MGSA (password is both changed and managed by windows) from a security perspective?

Any response is appreciated as we are somewhat in the heat of rolling this out to customers so now is not the time to do the change, but also is opportune rather than later. :)

Thanks!!

   Please, sign in to be able to submit a new answer.