Internet Information Server (IIS) CS 795/895 Introduction • IIS (Internet Information Server) is a group of Internet servers (including a Web or HTTP server and a FTP server) with additional capabilities for Microsoft's Windows NT and Windows 2000 Server operating systems. • IIS is Microsoft's entry to compete in the Internet server market. • With IIS, Microsoft includes a set of programs for building and administering Web sites, a search engine, and support for writing Web-based applications that access databases. • IIS is tightly integrated with the Windows NT and 2000 Servers in a number of ways, resulting in faster Web page serving. Authentication Mechanisms • • IIS 6.0 and higher support the following authentication mechanisms: Anonymous authentication, Basic access authentication, Digest access authentication, Integrated Windows Authentication, UNC authentication, Certificate authentication IIS 7.0 has a modular architecture. These modules are individual features that the server uses to process requests and include the following: – – Security modules: For tasks related to security in the request-processing pipeline, such as specifying authentication schemes, performing URL authorization, and filtering requests. Content modules: For tasks related to content in the request-processing pipeline, such as processing requests for static files, returning a default page when a client does not specify a resource in a request, and listing the contents of a directory. Compression modules: For tasks related to compression in the request-processing pipeline, such as compressing responses, applying Gzip compression transfer coding to responses, and performing pre-compression of static content. Caching modules: For tasks related to caching in the request-processing pipeline, such as storing processed information in memory on the server and using cached content in subsequent requests for the same resource. Logging and Diagnostics modules: For tasks related to logging and diagnostics in the requestprocessing pipeline, such as passing information and processing status to HTTP. sys for logging, reporting events, and tracking requests currently executing in worker processes. IIS 7.5 includes the following additional or enhanced security features: Client certificate mapping IP security Request filtering URL authorization http://weblogs.asp.net/scottgu/iis-7-0 http://msdn.microsoft.com/en-us/magazine/cc163453.aspx IIS6 Request Processing IIS7 Request Processing IIS6 ASP.NET Integration IIS7 ASP.NET Integration Basic Anon Authorization ResolveCache ExecuteHandler – Classic (runs as ISAPI) – Integrated • Integrated Mode Static File ISAPI UpdateCache SendResponse • Two Modes Compress Log – .NET modules / handlers plug directly into pipeline – Process all requests – Full runtime fidelity IIS Manager • Remotes over HTTP, making it firewall friendly (remoting is not installed by default) • Provides managed extensibility • Supports non-admin management of sites and applications Summary