EXCHANGE 2000 WITHOUT IIS

HI,
IS THERE ANYWAY TO INSTALL EXCH 2000 WITHOUT INSTALLING IIS. I DON'T WANT TO USE IIS IN THE SYSTEM.

THANKS
csumerAsked:
Who is Participating?
 
jml6278Commented:
You can't remove or disable IIS, but you can lock it down to prevent hackers from gaining easy access by downloading and using the IIS Lockdown tool from MS.

IIS Lockdown on Exchange 2000 Servers
In Exchange 2000 environments, the lockdown tool does not accommodate Exchange installable file system (IFS) mounted drives (typically drive M). To use the lockdown tool on Exchange 2000 servers:

Run IISlockD.exe.


Click Advanced Lockdown , and then click Next .


The Remove Script Mappings dialog box is displayed:


If the Disable support for Active Server Pages (.asp) check box is selected, the OWA multimedia button does not function. The following Microsoft Knowledge Base article describes the process to disable the multimedia button for customers who do not have a unified messaging solution:
Q288119 XWEB: How to Disable the Multimedia Button in OWA
When Active Server Pages (ASP) pages are disabled, unified messaging still functions with the WAV file attachment.


If the Disable support for the .HTR scripting (.htr) check box is selected, the OWA Change Password feature does not function. This OWA feature is disabled by default. The following Knowledge Base article describes the process to hide the Change Password button in OWA:


Q297121 XWEB: How to Hide the Change Password Button on the Outlook Web Access Options Page
Click Next .


The Additional Lockdown Actions dialog box is displayed:


Click to clear the Disable Distributed Authoring and Versioning (WebDAV) check box.


Click to clear the Set file permissions to prevent the IIS anonymous users from writing to content directories check box. This excludes the IIS virtual directories that are mapped to Exchange IFS.


Click Next , and then click Yes to complete the lockdown process.


To manually set the file permissions for the IIS anonymous user, set an explicit Deny All Access Control Entry (ACE) for anonymous Web users for each IIS virtual directory:
Start the Internet Services Manager Microsoft Management Console (MMC).


Click to expand the Default Web Site .


For each virtual directory:


Click to select a virtual directory, right-click the virtual directory, and then click Properties .


On the Virtual Directory tab, note the local path.


Start Microsoft Windows Explorer, and then locate the local path folder.


Right-click the folder, and then click Properties .


Click the Security tab.


Click Add .


Click to select the _Web Anonymous Users and _Web Applications accounts, and then click OK .


Click to select the _Web Anonymous Users account, and then deny Full Control ACE.


Click to select the _Web Anonymous Users account, and then deny Full Control ACE.


Click to select the _Web Applications account, and then deny Full Control ACE.


Repeat step 3 for each virtual directory, excluding the Exchange and Exadmin virtual roots.

hope this helps.... also you have to stay current with your security patches....

Jeff-
0
 
geoffrynCommented:
No.  IIS is a dependency of Exchange 2000.
0
 
csumerAuthor Commented:
Are you saying this is a must? Is there any way to get rid of it even after the installation. Like disabling. Or uninstalling IIS after.
The thing is I don't want to live to many open doors for heackers..
thanks...
0
 
geoffrynCommented:
No, you can't get rid of it.  The two are heavily intertwined.  You can disable some services from IIS, ie ftp and you can also use IISLOCKD to secure the server, but you cannot uninstall IIS.
0
 
csumerAuthor Commented:
thanks,
accepted...
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.