book

Internet Information Services (IIS) 7.0 Administrator’s Pocket Consultant

Name: Internet Information Services (IIS) 7.0 Administrator’s Pocket Consultant
Author: William R. Stanek
ISBN: 9780735623644

by William R. Stanek

December 2007

Intermediate to advanced

544 pages

19h 24m

English

Microsoft Press

Read now

Unlock full access

Internet Information Services (IIS) 7.0 Administrator’s Pocket Consultant
Dedication
Acknowledgments
Introduction
Who Is This Book For?How This Book Is OrganizedConventions Used in This BookOther ResourcesSupport
1. IIS 7.0 Administration Overview
Working with IIS 7.0: What You Need to Know Right NowIntroducing IIS 7.0 Configuration ArchitectureIIS 7.0 Configuration SchemaIIS 7.0 Global Configuration SystemIIS 7.0 and Your HardwareIIS 7.0 Editions and WindowsWeb Administration Tools and TechniquesManaging Resources by Using Key Administration ToolsWeb Administration Techniques
2. Deploying IIS 7.0 in the Enterprise
IIS 7.0 ProtocolsHTTP and SSLFTPSMTPIIS 7.0 RolesNavigating the IIS 7.0 Role Services and FeaturesRole Services for Application ServersRole Services for Windows Desktops and Web ServersRole Services for Servers Running SharePoint ServicesSetting Up IIS 7.0Installing Application ServersInstalling Web ServersInstalling Windows SharePoint ServicesAdding or Removing Web Server Features on Windows VistaManaging Installed Roles and Role ServicesViewing Configured Roles and Role ServicesAdding or Removing Roles on ServersViewing and Modifying Role Services on Servers
3. Core IIS 7.0 Administration
Working with IIS and URLsUnderstanding the Core IIS ArchitectureWorking with Web SitesWorking with Web Applications and Virtual DirectoriesControlling Access to Servers, Sites, and ApplicationsUnderstanding the Services and Processing ArchitectureEssential IIS Services and ProcessesIIS Worker Process Isolation ModeUnderstanding and Using IIS ApplicationsUnderstanding and Using ASP.NET ApplicationsManaging IIS Servers: The EssentialsUsing Internet Information Services (IIS) ManagerEnabling and Configuring Remote AdministrationStarting, Stopping, and Restarting All Internet ServicesManaging Individual Resources in IIS ManagerRebooting IIS ServersManaging IIS ServicesStarting, Stopping, and Pausing IIS ServicesConfiguring Service StartupConfiguring Service Recovery
4. Managing IIS 7.0 from the Command Line
Using the Windows PowerShellIntroducing the Windows PowerShellRunning and Using Windows PowerShellRunning and Using CmdletsRunning and Using Other Commands and UtilitiesWorking with CmdletsUsing Windows PowerShell CmdletsUsing Cmdlet ParametersUnderstanding Cmdlet ErrorsUsing Cmdlet AliasesUsing Cmdlets with IISUsing the IIS Command-Line Administration ToolRunning and Using the IIS Command Line Administration ToolWorking with the IIS Command Line Administration ToolWorking with IIS CommandsUsing Configuration Management CommandsUsing Module Management CommandsUsing Site Management CommandsUsing Application Pool Management CommandsUsing Application Management CommandsUsing Virtual Directory Management CommandsUsing Utility Commands
5. Managing Global IIS Configuration
Understanding Configuration Levels and Global ConfigurationManaging Configuration SectionsWorking with Configuration SectionsDetermining Settings for a Configuration SectionModifying Settings for a Configuration SectionLocking and Unlocking Configuration SectionsClearing and Resetting Configuration SectionsExtending IIS with ModulesControlling Native Modules through the Configuration FilesControlling Managed Modules through the Configuration FilesControlling Managed Handlers through the Configuration FilesUsing the Configuration and Schema Files to Install Non-Standard Extension ModulesManaging ModulesViewing Installed Native and Managed ModulesInstalling Native ModulesEnabling Native ModulesEnabling Managed ModulesEditing Native and Managed Module ConfigurationsDisabling Native and Managed ModulesUninstalling Native ModulesSharing Global ConfigurationWorking with Shared ConfigurationsExporting and Sharing Global Configuration
6. Configuring Web Sites and Directories
Web Site Naming and IdentificationUnderstanding IP Addresses and Name ResolutionUnderstanding Web Site IdentifiersHosting Multiple Sites on a Single ServerChecking the Computer Name and IP Address of ServersExamining Site ConfigurationCreating Web SitesCreating a Web Site: The EssentialsCreating an Unsecured Web SiteCreating a Secured Web SiteManaging Web Sites and Their PropertiesWorking with Sites in IIS ManagerConfiguring a Site’s Application Pool and Home DirectoryConfiguring Ports, IP Addresses, and Host Names Used by Web SitesRestricting Incoming Connections and Setting Time-Out ValuesConfiguring HTTP Keep-AlivesConfiguring Access Permissions in IIS ManagerManaging a Site’s Numeric Identifier and AutoStart StateDeleting SitesCreating DirectoriesUnderstanding Physical and Virtual Directory StructuresExamining Virtual Directory ConfigurationCreating Physical DirectoriesCreating Virtual DirectoriesManaging Directories and Their PropertiesEnabling or Disabling Directory BrowsingModifying Directory PropertiesRenaming DirectoriesChanging Virtual Directory Paths, Logon Methods, and MoreDeleting Directories

7. Customizing Web Server Content
Managing Web ContentOpening and Browsing FilesModifying the IIS Properties of FilesRenaming FilesDeleting FilesRedirecting Browser RequestsRedirecting Requests to Other Directories or Web SitesRedirecting All Requests to Another Web SiteRedirecting Requests to ApplicationsCustomizing Browser RedirectionCustomizing Web Site Content and HTTP HeadersConfiguring Default DocumentsConfiguring Document FootersConfiguring Included FilesUsing Content Expiration and Preventing Browser CachingEnabling Content ExpirationDisabling Content ExpirationUsing Custom HTTP HeadersUsing Content Ratings and Privacy PoliciesImproving Performance with CompressionConfiguring Content Compression for an Entire ServerEnabling or Disabling Content Compression for Sites and DirectoriesCustomizing Web Server Error MessagesUnderstanding Status Codes and Error MessagesManaging Custom Error SettingsViewing and Configuring Custom Error SettingsAdding, Changing, and Removing Custom Error ResponsesAdding Localized Custom Error ResponsesAdding Non-localized Custom Error ResponsesChanging or Removing Custom Error ResponsesUsing MIME and Configuring Custom File TypesUnderstanding MIMEViewing and Configuring MIME TypesAdditional Customization TipsUsing Update Sites to Manage OutagesUsing Jump Pages for AdvertisingHandling 404 Errors and Preventing Dead Ends
8. Running IIS Applications
Managing ISAPI and CGI Application SettingsUnderstanding ISAPI ApplicationsConfiguring ISAPI and CGI RestrictionsConfiguring ISAPI FiltersConfiguring CGI SettingsManaging ASP SettingsControlling ASP BehaviorCustomizing Request Handling for ASPOptimizing Caching for ASPCustomizing COM+ Execution for ASPConfiguring Session State for ASPConfiguring Debugging and Error Handling for ASPManaging ASP.NET SettingsConfiguring Session State Settings for ASP.NETConfiguring SMTP E-Mail SettingsConfiguring Key/Value Pairs for ASP.NET ApplicationsConfiguring Settings for ASP.NET Pages and ControlsRegistering Custom ControlsConfiguring ASP.NET Settings for Pages and ControlsConnecting to Data SourcesManaging .NET Framework SettingsConfiguring .NET ProvidersConfiguring .NET Trust LevelsConfiguring .NET ProfilesConfiguring .NET RolesConfiguring .NET UsersConfiguring .NET CompilationConfiguring .NET Globalization
9. Managing Applications, Application Pools, and Worker Processes
Defining Custom ApplicationsManaging Custom IIS ApplicationsViewing ApplicationsConfiguring Default Settings for New ApplicationsCreating ApplicationsConverting Existing Directories to ApplicationsChanging Application SettingsConfiguring Output Caching for ApplicationsDeleting IIS ApplicationsManaging ASP.NET and the .NET FrameworkInstalling ASP.NET and the .NET FrameworkDeploying ASP.NET ApplicationsUninstalling .NET VersionsWorking with Application PoolsViewing Application PoolsConfiguring Default Settings for New Application PoolsCreating Application PoolsChanging Application Pool SettingsAssigning Applications to Application PoolsConfiguring Application Pool IdentitiesStarting, Stopping, and Recycling Worker Processes ManuallyStarting and Stopping Worker Processes ManuallyRecycling Worker Processes ManuallyConfiguring Worker Process Startup and Shutdown Time LimitsConfiguring Multiple Worker Processes for Application PoolsConfiguring Worker Process RecyclingRecycling Automatically by Time and Number of RequestsRecycling Automatically by Memory UsageMaintaining Application Health and PerformanceConfiguring CPU MonitoringConfiguring Failure Detection and RecoveryShutting Down Idle Worker ProcessesLimiting Request QueuesDeleting IIS Application Pools
10. Managing Web Server Security
Managing Windows SecurityWorking with User and Group AccountsIIS User and Group EssentialsManaging the IIS Service Logon AccountsManaging the Internet Guest AccountWorking with File and Folder PermissionsFile and Folder Permission EssentialsViewing File and Folder PermissionsSetting File and Folder PermissionsWorking with Group PoliciesGroup Policy EssentialsSetting Account Policies for IIS ServersSetting Auditing PoliciesManaging IIS SecurityConfiguring Handler Mappings for ApplicationsSetting Authentication ModesUnderstanding AuthenticationEnabling and Disabling AuthenticationSetting Authorization Rules for Application AccessConfiguring IPv4 Address and Domain Name RestrictionsManaging Feature Delegation and Remote AdministrationCreating and Configuring IIS Manager User AccountsConfiguring IIS Manager PermissionsConfiguring Feature Delegation
11. Managing Active Directory Certificate Services and SSL
Understanding SSLUsing SSL EncryptionUsing SSL CertificatesUnderstanding SSL Encryption StrengthWorking with Active Directory Certificate ServicesUnderstanding Active Directory Certificate ServicesInstalling Active Directory Certificate ServicesAccessing Certificate Services in a BrowserStarting and Stopping Certificate ServicesBacking Up and Restoring the CACreating CA BackupsRecovering CA InformationConfiguring Certificate Request ProcessingApproving and Declining Pending Certificate RequestsGenerating Certificates Manually in the Certification Authority Snap-InRevoking CertificatesReviewing and Renewing the Root CA CertificateCreating and Installing CertificatesCreating Certificate RequestsSubmitting Certificate Requests to Third-Party AuthoritiesSubmitting Certificate Requests to Certificate ServicesProcessing Pending Requests and Installing Site CertificatesWorking with SSLConfiguring SSL PortsAdding the CA Certificate to the Client Browser’s Root StoreConfirming that SSL Is Correctly EnabledResolving SSL ProblemsIgnoring, Accepting, and Requiring Client CertificatesRequiring SSL for All Communications
12. Performance Tuning, Monitoring, and Tracing
Monitoring IIS Performance and ActivityWhy Monitor IIS?Getting Ready to MonitorDetecting and Resolving IIS ErrorsExamining the Access LogsExamining the Windows Event LogsExamining the Trace LogsTracing Failed RequestsEnabling and Configuring Failed Request TracingCreating and Managing Trace RulesMonitoring IIS Performance and ReliabilityUsing the Reliability And Performance ConsoleChoosing Counters to MonitorTuning Web Server PerformanceMonitoring and Tuning Memory UsageMonitoring and Tuning Processor UsageMonitoring and Tuning Disk I/OMonitoring and Tuning Network Bandwidth and ConnectivityStrategies for Improving IIS PerformanceRemoving Unnecessary Applications and ServicesOptimizing Content UsageOptimizing ISAPI, ASP, and ASP.NET ApplicationsOptimizing IIS Caching, Queuing, and Pooling
13. Tracking User Access and Logging
Tracking Statistics: The Big PictureWorking with the NCSA Common Log File FormatHost FieldIdentification FieldUser Authentication FieldTime Stamp FieldHTTP Request FieldStatus Code FieldTransfer Volume FieldWorking with the Microsoft IIS Log File FormatWorking with the W3C Extended Log File FormatWorking with ODBC LoggingWorking with Centralized Binary LoggingUnderstanding LoggingConfiguring LoggingConfiguring Per-Server or Per-Site LoggingConfiguring the NCSA Common Log File FormatConfiguring Microsoft IIS Log File FormatConfiguring W3C Extended Log File FormatConfiguring ODBC LoggingCreating a Logging Database and Table in SQL Server 2005Creating a DSN for SQL Server 2005Enabling and Configuring ODBC Logging in IISConfiguring Centralized Binary LoggingDisabling Logging
14. IIS Backup and Recovery
Backing Up the IIS ConfigurationUnderstanding IIS Configuration BackupsManaging the IIS Configuration HistoryViewing IIS Configuration BackupsCreating IIS Configuration BackupsRemoving IIS Configuration BackupsRestoring IIS Server ConfigurationsRebuilding Corrupted IIS InstallationsBacking Up and Recovering Server FilesTurning on the Backup FeatureWorking with Windows Server BackupSetting Basic Performance OptionsScheduling Server BackupsBacking up a ServerProtecting a Server Against FailureConfiguring Recovery OptionsRecovering Files and Folders
A. Comprehensive IIS 7.0 Module and Schema Reference
Working with IIS 7.0 ModulesIntroducing the Native ModulesIntroducing the Managed ModulesIIS 7.0 Native Module ReferenceAnonymousAuthenticationModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesBasicAuthenticationModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExampleElement AttributesCertificateMappingAuthenticationModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesCgiModuleDescriptionExecutableDependenciesConfiguration ElementsApplicationHost.config Usage ExamplesElement AttributesConfigurationValidationModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesCustomErrorModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesCustomLoggingModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesDefaultDocumentModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesDigestAuthenticationModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesDirectoryListingModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesDynamicCompressionModuleDescriptionExecutableDependenciesConfiguration ElementsApplicationHost.config Usage ExamplesElement AttributesFailedRequestsTracingModuleDescriptionExecutableDependenciesConfiguration ElementsApplicationHost.config Usage ExamplesElement AttributesFastCgiModuleDescriptionExecutableDependenciesConfiguration ElementsApplicationHost.config Usage ExamplesElement AttributesFileCacheModuleDescriptionExecutableDependenciesConfiguration ElementsHttpCacheModuleDescriptionExecutableDependenciesConfiguration ElementsApplicationHost.config Usage ExamplesElement AttributesHttpLoggingModuleDescriptionExecutableDependenciesConfiguration ElementsApplicationHost.config Usage ExamplesElement AttributesHttpRedirectionModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesIISCertificateMappingAuthenticationModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesIpRestrictionModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExampleElement AttributesAllow unrestricted accessRestrict access to a specific grant listAllow open access except for specific computersAllow open access except for specific networksAllow open access except for specific domainsIsapiFilterModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesIsapiModuleDescriptionExecutableDependenciesConfiguration ElementsApplicationHost.config Usage ExamplesElement AttributesManagedEngineDescriptionExecutableDependenciesConfiguration ElementsApplicationHost.config Usage ExamplesProtocolSupportModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesRequestFilteringModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesRequestMonitorModuleDescriptionExecutableDependenciesConfiguration ElementsApplicationHost.config Usage ExamplesServerSideIncludeModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesStaticCompressionModuleDescriptionExecutableDependenciesConfiguration ElementsApplicationHost.config Usage ExamplesStaticFileModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesTokenCacheModuleDescriptionExecutableDependenciesConfiguration ElementsApplicationHost.config Usage ExamplesTracingModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesUriCacheModuleDescriptionExecutableDependenciesConfiguration ElementsApplicationHost.config Usage ExamplesUrlAuthorizationModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesWindowsAuthenticationModuleDescriptionExecutableDependenciesConfiguration ElementApplicationHost.config Usage ExamplesElement AttributesIIS 7.0 Managed Module ReferenceAnonymousIdentificationModule.NET Framework Class LibraryApplicationHost.config Usage ExamplesMicrosoft Visual Basic UsageC# UsageDependenciesConfiguration ElementsDefaultAuthenticationModule.NET Framework Class LibraryApplicationHost.config Usage ExamplesVisual Basic UsageC# UsageDependenciesConfiguration ElementFileAuthorizationModule.NET Framework Class LibraryApplicationHost.config Usage ExamplesVisual Basic UsageC# UsageDependenciesConfiguration ElementsFormsAuthenticationModule.NET Framework Class LibraryApplicationHost.config Usage ExamplesVisual Basic UsageC# UsageDependenciesConfiguration ElementLibrary SettingsOutputCacheModule.NET Framework Class LibraryApplicationHost.config Usage ExamplesDependenciesConfiguration ElementProfileModule.NET Framework Class LibraryApplicationHost.config Usage ExamplesVisual Basic UsageC# UsageDependenciesConfiguration ElementsRoleManagerModule.NET Framework Class LibraryApplicationHost.config Usage ExamplesVisual Basic UsageC# UsageDependenciesConfiguration ElementsSessionStateModule.NET Framework Class LibraryApplicationHost.config Usage ExamplesVisual Basic UsageC# UsageDependenciesConfiguration ElementUrlAuthorizationModule.NET Framework Class LibraryApplicationHost.config Usage ExamplesVisual Basic UsageC# UsageDependenciesConfiguration ElementsUrlMappingsModule.NET Framework Class LibraryApplicationHost.config Usage ExamplesDependenciesConfiguration ElementsWindowsAuthenticationModule.NET Framework Class LibraryApplicationHost.config Usage ExamplesVisual Basic UsageC# UsageDependenciesConfiguration Element
B. About the Author
Index
About the Author
Copyright

Content preview from Internet Information Services (IIS) 7.0 Administrator’s Pocket Consultant

Chapter 10. Managing Web Server Security

As you’ve seen throughout this book, security features are integrated into many areas of Internet Information Services (IIS) 7.0. In this chapter, you’ll learn how to manage areas of Web server security that we have not yet discussed. Web servers have different security considerations from those of standard Windows Server 2008 configurations. On a Web server, you have three levels of security:

Windows security. At the operating system level, you create user and group accounts, configure access permissions for files and directories, and set policies.
IIS security. At the level of Internet Information Services (IIS), you set content permissions, authentication controls, and delegated privileges.
.NET security ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Internet Information Services (IIS) 7.0 Resource Kit

Publisher Resources

ISBN: 9780735623644Purchase book

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Internet Information Services (IIS) 7.0 Administrator’s Pocket Consultant

by William R. Stanek

Chapter 10. Managing Web Server Security

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.