Cacti (home)ForumsDocumentation

Configure a Web Server

Cacti functions with any web server which utilizes PHP and MySQL. It's up to the system admin to utilize Microsoft IIS, Apache, or something else.

Microsoft IIS



After following the above guides:

IIS6 has the IIS_WPG user account. IIS7 it's called IIS_IUSRS

  1. Give the COMPUTERNAME\IUSR_ and COMPUTERNAME\IIS_WPG users Read & Execute permissions to the file C:\Windows\system32\cmd.exe. Yes, this can be a large security hole, but it's required so RRDTool can be launched for graphing by the anonymous web account. For slightly improved security, one can specify a separate custom User account which would be used for the /wwwroot/Cacti/ site. Then, instead of using IUSR_ everywhere throughout this document, replace it with the custom User account. This way, only a security hole in Cacti's code could exploit cmd.exe and not all sites on the IIS server.
    1. Right click on cmd.exe and select Properties.
    2. Click on the Security tab.
    3. Select the IUSR_ account
    4. Click on Read & Execute in the Permissions box.
    5. Repeat for the IIS_WPG user.
    6. Click OK.
  2. Both IUSR_ and IIS_WPG users will also need read permissions on C:\Inetpub\wwwroot\cacti\ and its subfolders.
    1. Right click on the folder C:\Inetpub\wwwroot\cacti and select Properties.
    2. Click on the Security tab.
    3. Click on Add… under the group or user names section.
    4. Type in IUSR_COMPUTERNAME or click Advanced… and Find Now. Repeat for the IIS_WPG account.
    5. Click OK to close the select users or groups window.
    6. Select the IUSR_COMPUTERNAME from the list.
    7. Select Read & Execute from the Permissions box.
    8. Repeat for the IIS_WPG account.
    9. At the bottom of the Security tab, click on Advanced….
    10. In the Permissions tab, click on Replace permissions entries on all child objects with entries shown here that apply to child objects.
    11. Click OK.
    12. Click Yes to the Security warning dialog box.
    13. Click OK to close the properties window.
  3. Give the IUSR_ and IIS_WPG users modify permissions to the folders C:\Inetpub\wwwroot\cacti\log\ and C:\Inetpub\wwwroot\cacti\rra\.
  4. Completely stop and start the IIS service using the following commands from the command prompt. Alternatively, use the Service MMC snap-in under Administrative Tools:
    net stop iisadmin
    net start w3svc


Make sure to stop the IIS web services before proceeding with the Apache installation or make sure Apache is configured on an alternate port.

  1. Download the latest version from Apache Lounge.
  2. Make sure to read the Windows specific notes for other Windows tips.
  3. Extract the ZIP file to C:\Apache2\
    1. Edit \Apache2\conf\httpd.conf
      1. Set ServerRoot
      2. Set ServerName
  4. Manually run httpd.exe at a command prompt to check for errors.
  5. Once error free, execute httpd.exe -k install

Personal Tools