Professional Documents
Culture Documents
http://www.ronmar.netrms.com/ppc/pcs245/chap...
Install and congure Internet Information Services (IIS) Create and congure Web-site virtual servers and virtual
directories
Congure Web-site authentication Congure and maintain FTP virtual servers Update and maintain security for an IIS server Create and modify Web folders Install and use the Remote Administration (HTML) tools Install and congure Web-based printing and printer
management
Current version is Internet Information Services (IIS) 6.0 IIS provides Web-related services that can be implemented to
host a corporate intranet or to provide an Internet presence
1 of 16
07/15/2011 05:12 PM
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
IIS 6.0 is not installed by default Individual IIS components can be manually installed through
the Add or Remove Programs applet in the Control Panel Activity 13-1: Installing Internet Information Services
Objective: To install IIS components Start Control Panel Add or Remove Programs
Add/Remove Windows Components
Select and install individual components as directed Note changes on the server, folders created during IIS
installation, new accounts in Active Directory, operating system services, Web sharing feature Activity 13-2: Viewing System Changes after Installing IIS
Open Active Directory and browse for the new accounts that
have been added: 2 new user accounts and 1 new group account
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
IIS 6.0 is similar to IIS 5.0 with Windows 2000 Changes relate to how processes are managed and
maintained and updated metabase les
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
navigation
From the open IIS Manager window, open the Web Sites
folder properties
Congure the folder properties as directed Test setting inheritance by viewing the Default Web Site
properties Creating and Conguring Web-Site Virtual Servers
IIS can support many virtual servers on a single server Conguration conicts are avoided by identifying the IP
address, TCP port, and host header name of each Web site and ensuring that the site is uniquely identied through these features Activity 13-5: Creating a New Web Site Using the Web Site Creation Wizard
4 of 16
07/15/2011 05:12 PM
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
Create a new Web site using the Web Site Creation Wizard Create a default HTML index page for the new site
Activity 13-6: Creating a New Web Site Using the IISWEB.VBS Script
Start Run type cmd OK Make a new Web site home directory as directed Run the IISWEB.VBS script as directed Verify that the Web site has been created and congured
correctly Modifying Web-Site Properties
Open IIS and the Properties of the site to be congured Congure settings as directed
5 of 16 07/15/2011 05:12 PM
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
Create an html le and congure it as a footer Customize an error message Verify the congured settings
Creating Virtual Directories
A virtual directory points to a shared folder on the server An alias name can be created
Hides the real directory name Can simplify the path to the folder
Create and congure a new shared folder Create a new index le for the Web site Open and use the Virtual Directory Creation Wizard to create
a virtual directory with an alias
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
Digest authentication Integrated Windows authentication .NET Passport authentication Anonymous Access and Basic Authentication
Anonymous access
Users do not need to provide a user name and password Uses the IUSR_servername user account to provide authentication credentials
Basic authentication
User is prompted to supply a user name and password User needs a valid Windows Server 2003 user account One drawback is that information is transmitted using unencrypted Base64 encoding (easy to hack) Digest Authentication and Integrated Windows Authentication
Digest authentication
Similar to basic authentication but hashes user name and password using MD5 algorithm Has specic software and Active Directory requirements
7 of 16
07/15/2011 05:12 PM
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
Discover the current conguration using the IIS Manager tool Explore the eect of the current conguration on Web-site
access
Users access a secure server using https:// prex SSL requires a server certicate from a certicate authority
or from installed certicate services Conguring FTP Virtual Servers
8 of 16
07/15/2011 05:12 PM
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
Each site operates independently and runs transparently Each site has property sheets that can be customized
independently Activity 13-10: Conguring and Testing the Default FTP Site
Open the IIS Manager tool and the Properties of the Default
9 of 16 07/15/2011 05:12 PM
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
FTP Site
Browse and congure various settings of the site Log on as an anonymous user to test the site conguration
Activity 13-11: Creating and Testing a New FTP Site and Conguring a Virtual Directory
Use the FTP Site Creation Wizard to create a site Use the Virtual Directory Creation Wizard to create a new
virtual directory
10 of 16
07/15/2011 05:12 PM
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
NTFS permissions
Normal NTFS le permissions can be applied to Web pages and virtual directories Can be assigned to users and groups individually
IIS permissions
Always global Can be congured for Web sites and FTP virtual servers, virtual directories, physical directories, les Can set Read and/or Write permissions Can set Execute permission if site contains scripts or executables Activity 13-12: Conguring IIS and NTFS Permissions
Open the IIS Manager tool and access the Properties of a Web
site to congure IIS permissions
Test the IIS permissions as directed Open the Properties of the Web content folder to congure
NTFS permissions
Access can be explicitly granted or denied Access can be controlled for a specic IP address or a range
11 of 16 07/15/2011 05:12 PM
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
Open the IIS Manager tool and the Properties of the Web site From the Directory Security tab, edit the IP Address and
Domain Name Restrictions to deny access to a specic IP address
IIS 6.0 allows you to start and stop services through the IIS
console
12 of 16
07/15/2011 05:12 PM
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
Common updates to IIS are service packs and hot xes Before updating, perform a full backup of server Updates are often released to x security issues Microsoft Baseline Security Analyzer helps determine which
IIS hot xes are installed Creating and Modifying Web Folders
Create a new folder and le Congure the folder using the Web Sharing tab of the folders
Properties
Open the IIS Manager tool and verify that the virtual
directory appears
13 of 16
07/15/2011 05:12 PM
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
Install the tools as directed Open Internet Explorer, congure the site, and connect to the
Remote Administration Web site
14 of 16
07/15/2011 05:12 PM
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
Use Internet Explorer to view printers and their properties Install a printer to use Internet Printing and verify that the
printer port is congured correctly Troubleshooting Web Client Connectivity Problems
Client access problems are not uncommon If a user is unable to access an IIS Server
Check TCP/IP conguration settings, proxy settings, connections, set up error messages, use a protocol analyzer
IIS components must be manually installed IIS conguration information is stored in two XML les
known as the metabase
15 of 16
07/15/2011 05:12 PM
Chapter 13:
http://www.ronmar.netrms.com/ppc/pcs245/chap...
The IIS MMC snap-in (the IIS Manager tool) is the primary
tool for IIS conguration
16 of 16
07/15/2011 05:12 PM