Either of these configurations have been verified to work on Windows 2003 server.
- Due to security settings in IIS 6, Vault's Shadow Folders must be run using identity impersonation. The Custom .Net account used for impersonation must have full user permissions in order for Shadow Folders to operate correctly.
The information in this KB article provides the information required to configure Shadow Folders - http://support.sourcegear.com/viewtopic.php?t=188 for setup information for a Custom .Net account.
Please note, if the Windows 2003 server is not on a Domain or you do not wish to use UNC paths for shadow folder destinations, you can substitute Local Machine Policies in lieu of the Domain Policies specified in the KB article.
Once the Custom .Net account has been configured, adding the Custom .Net account to the Local or Domain Users Group provides the account with sufficient permissions. - If the Vault Server is not on a Domain you can enable "Run WWW service in IIS 5.0 isolation mode" from within IIS 6's "Web Sites Properties" -> Service Tab.