Embed Size (px)
Citation preview
Internet Information Server (IIS)
CS 795/895
Introduction • IIS (Internet Information Server) is a group of Internet
servers (including a Web or HTTP server and a FTP server) with additional capabilities for Microsoft's Windows NT and Windows 2000 Server operating systems.
• IIS is Microsoft's entry to compete in the Internet server market.
• With IIS, Microsoft includes a set of programs for building and administering Web sites, a search engine, and support for writing Web-based applications that access databases.
• IIS is tightly integrated with the Windows NT and 2000 Servers in a number of ways, resulting in faster Web page serving.
Authentication Mechanisms• IIS 6.0 and higher support the following authentication mechanisms: Anonymous authentication, Basic access authentication, Digest
access authentication, Integrated Windows Authentication, UNC authentication, Certificate authentication• IIS 7.0 has a modular architecture. These modules are individual features that the server uses to process requests and include the
following:
– Security modules: For tasks related to security in the request-processing pipeline, such as specifying authentication schemes, performing URL authorization, and filtering requests.
– Content modules: For tasks related to content in the request-processing pipeline, such as processing requests for static files, returning a default page when a client does not specify a resource in a request, and listing the contents of a directory.
Compression modules: For tasks related to compression in the request-processing pipeline, such as compressing responses, applying Gzip compression transfer coding to responses, and performing pre-compression of static content.
Caching modules: For tasks related to caching in the request-processing pipeline, such as storing processed information in memory on the server and using cached content in subsequent requests for the same resource.
Logging and Diagnostics modules: For tasks related to logging and diagnostics in the request-processing pipeline, such as passing information and processing status to HTTP. sys for logging, reporting events, and tracking requests currently executing in worker processes.
IIS 7.5 includes the following additional or enhanced security features:Client certificate mappingIP securityRequest filteringURL authorization
http://weblogs.asp.net/scottgu/iis-7-0http://msdn.microsoft.com/en-us/magazine/cc163453.aspx
IIS6 Request Processing
IIS7 Request Processing
IIS6 ASP.NET Integration
IIS7 ASP.NET Integration• Two Modes
– Classic (runs as ISAPI)– Integrated
• Integrated Mode– .NET modules / handlers
plug directly into pipeline– Process all requests– Full runtime fidelity
Log
Compress
Basic
Static File
ISAPI
Anon
SendResponse
Authorization
ResolveCache
ExecuteHandler
UpdateCache
IIS Manager
• Remotes over HTTP, making it firewall friendly (remoting is not installed by default)
• Provides managed extensibility• Supports non-admin management of sites and applications
Summary
