iis

advertisement
Internet Information Server (IIS)
CS 795/895
Introduction
• IIS (Internet Information Server) is a group of Internet
servers (including a Web or HTTP server and a FTP server)
with additional capabilities for Microsoft's Windows NT and
Windows 2000 Server operating systems.
• IIS is Microsoft's entry to compete in the Internet server
market.
• With IIS, Microsoft includes a set of programs for building
and administering Web sites, a search engine, and support
for writing Web-based applications that access databases.
• IIS is tightly integrated with the Windows NT and 2000
Servers in a number of ways, resulting in faster Web page
serving.
Authentication Mechanisms
•
•
IIS 6.0 and higher support the following authentication mechanisms: Anonymous authentication, Basic access
authentication, Digest access authentication, Integrated Windows Authentication, UNC authentication, Certificate
authentication
IIS 7.0 has a modular architecture. These modules are individual features that the server uses to process requests and
include the following:
–
–
Security modules: For tasks related to security in the request-processing pipeline, such as specifying
authentication schemes, performing URL authorization, and filtering requests.
Content modules: For tasks related to content in the request-processing pipeline, such as processing
requests for static files, returning a default page when a client does not specify a resource in a
request, and listing the contents of a directory.
Compression modules: For tasks related to compression in the request-processing pipeline, such as
compressing responses, applying Gzip compression transfer coding to responses, and performing
pre-compression of static content.
Caching modules: For tasks related to caching in the request-processing pipeline, such as storing
processed information in memory on the server and using cached content in subsequent requests for
the same resource.
Logging and Diagnostics modules: For tasks related to logging and diagnostics in the requestprocessing pipeline, such as passing information and processing status to HTTP. sys for logging,
reporting events, and tracking requests currently executing in worker processes.
IIS 7.5 includes the following additional or enhanced security features:
Client certificate mapping
IP security
Request filtering
URL authorization
http://weblogs.asp.net/scottgu/iis-7-0
http://msdn.microsoft.com/en-us/magazine/cc163453.aspx
IIS6 Request Processing
IIS7 Request Processing
IIS6 ASP.NET Integration
IIS7 ASP.NET Integration
Basic
Anon
Authorization
ResolveCache
ExecuteHandler
– Classic (runs as ISAPI)
– Integrated
• Integrated Mode
Static
File
ISAPI
UpdateCache
SendResponse
• Two Modes
Compress
Log
– .NET modules / handlers
plug directly into pipeline
– Process all requests
– Full runtime fidelity
IIS Manager
• Remotes over HTTP, making it firewall friendly
(remoting is not installed by default)
• Provides managed extensibility
• Supports non-admin management of sites and applications
Summary
Download