Microsoft IIS Web Server





IIS is Internet Information Services, the web server included with Windows Server operating systems. All current versions are built on a modular architecture; modules can be added or removed individually so that those required for specific functionality are installed. The full installation of IIS includes HTTP, security, content, compression, caching, logging and diagnostics.

I have a webservice that ran with a bug in it. The web service is still running and I'd like to stop it from continuing to loop.

I am using Windows Server 2012R2 and IIS Version 8.5. It is a Windows Web Server.

I have stopped the website. I have stopped the application pool. I have waited a few minutes before restarting them.

But the webservice still keeps running in the background.

I have not reboot the box, but that is the next thing I am considering.

Any ideas? Thanks!
Hello, All.
(The development is done in ASP Classic (VB), in case I need to do something within the code.)

In the website, our search string is displayed as such.

Our URL Rewrite is this.

Pattern: Search/([_0-9a-z-(-)-,-]+)/([_0-9a-z-(-)-,-]+)
Rewrite URL: Main.asp?Type=Results&Submit=Search&Term={R:1}&Cat={R:2}

Screenshot of the RULE
How can I make the Search Query work, so that when you click search, it rewrites the URL to this?


I was adding some php file uploader to my Microsoft server 2016.  I had the software company dial into the server to help look at config and now all my sites are down and it only shows a http 500 error?  And no matter what I change around I can't get the sites to give me any error messages or anything.  I am unable to reach the software support people today for some reason and need to get the sites back up.  Any clue on a way to troubleshoot this?

Main site is using .asp, and I added php which seemed to be working also.  I just don't know if somehow the rights got changed? even the files with .html won't work either?
In Azure, I set up two VM's, a Win2012 R2 DC and a Win10 workstation, both VM's in the same subnet

When attempting to add the Win 10 workstation it says it cannot find a DC? I deleted the VM's and am about to try again, as I was getting pretty burnt out and frustrated. Figured I'd ask before I begin again. Is this a feasible lab scenario?

When attempting to add the Win10 workstation to the Domain, the message I was getting was that the win 10 workstation could not find a domain controller in the domain.  I went with Test.Com as my domain vs Test.local  Maybe that was part of my problem? This is my first Lab using Azure.

Is there an article on how to build this lab environment?  It's possible that I misconfigured something fundamental with DNS and or the IP stack on the workstation?

My goal is to have a Windows Domain Controller and a Win10 Pro or Enterprise workstation so that I can test GPO's and login scripts.

Then, my plan is to connect a Firewall to another location and set up additional workstations, but for now, I just want to get the single Azure domain up and running with just the two nodes.

Feedback appreciated.

Windows 2016 - IIS 10  I'm inexperienced with using host headers.  Our developers have an app that logs the ip's making a request.  They've explained that they're seeing the gateway address of the server, instead of the public address being logged.  Is this the normal behavior when using host headers, or should the public address be logged?  The xxx is indeed the servers gateway address, not a single public ip address is being logged.  If the public ip address should be logged.  What might I have mis-configured?  The internal users of the site have their ip address being logged correctly.  Thanks

C:\Program Files (x86)\Log Parser 2.2>logparser "select c-ip, count (c-ip) as requestcount from u_ex200206.log group by c-ip order by count(c-ip) desc"
c-ip          requestcount
------------- ------------  584795
I need to create a rewrite rule that will take multiple variations of the same url and redirect it to one place. Have tried the following with no success:

<rule name="AF09">
  <match url="(.*)" />
  <conditions logicalGrouping="MatchAny">
     <add input="{REQUEST_URI}" pattern="^news-and-features/af-blog/article/id/10967(.*)" />
     <add input="{REQUEST_URI}" pattern="^news-and-features/af-blog/article/id/10964(.*)" />
     <add input="{REQUEST_URI}" pattern="^news-and-features/af-blog/article/id/10962(.*)" />
  <action type="Redirect" url="" redirectType="Permanent" appendQueryString="false" />

Open in new window

Here's the scenario:
I have a web application that creates a number of web sites on the server it's installed.  Is there a way to get a list of all the URLs used on IIS on that server?  I'd like to see any URL that's listed whether it directs to a web page, redirects to another URL, etc.

I've tried googling this, but I just get pages and pages of things to try that never seem to give me the info I'm looking for.

I'm a complete newbie to IIS.
Hello, all.

When creating my own URL Rewrite script with the error pages, I was able to do multiple redirects.
However, with IIS URL Rewrite, I am having an issue with it.

So, this is what I believe I need to do.


What it needs to be.

This works, as it is grabbing everything, so everything you put in with:
Will get sent to this RULE.
                <rule name="BandMember" stopProcessing="true">
                    <match url="([_0-9a-z-(-)-,-]+)" />
                        <add input="{REQUEST_FILENAME}" matchType="IsFile" negate="true" />
                    <action type="Rewrite" url="Main.asp?Type=One&amp;BMID={R:1}" logRewrittenUrl="true" />

Open in new window

This does not??
I am thinking the "match url=" needs to have something similar in it, but, not this.
                <rule name="Label" stopProcessing="true">
                    <match url="Two/([_0-9a-z-(-)-,-]+)" />
                        <add input="{REQUEST_FILENAME}" matchType="IsFile" negate="true" />
                    <action type="Rewrite" url="Main.asp?Type=Two&amp;LabelID={R:1}" logRewrittenUrl="true" />

Open in new window

Any ideas on doing Multiple Rules, as I demonstrated above?

Using Visual Studio 2019 community on my local machine, I first published a simple webapp to folder on the server A ( IIS server (windows 2016 standard)) and then created an application pool and finally add this group [IIS_IUSRS] to the published site. But I still no getting no page when I click on the site link under “Browse Website” in IIS Manager. Please see the attached document about the steps I took
I would like to create a Virtual Directory that points to a PDF or Image file on our active directly drive which is mapped on the IIS server. So when someone follows the link it will pull up that PDF or Image.



Here is the error I currently get:  Capture.JPG
Windows 2012 R2 Web Farm
NLB and Kemp

I started getting this event on NODE 2 repeating over and over.

I restarted IIS  by doing IISRESET   still the event continues.

Log Name:      System
Source:        Microsoft-Windows-HttpEvent
Date:          1/20/2020 09:08:21
Event ID:      15021
Task Category: None
Level:         Error
Keywords:      Classic
User:          N/A
An error occurred while using SSL configuration for endpoint  The error status code is contained within the returned data.
Event Xml:
<Event xmlns="">
    <Provider Name="Microsoft-Windows-HttpEvent" Guid="{7b6bc78c-898b-4170-bbf8-1a469ea43fc5}" EventSourceName="HTTP" />
    <EventID Qualifiers="49152">15021</EventID>
    <TimeCreated SystemTime="2020-01-20T14:08:21.922564700Z" />
    <Correlation />
    <Execution ProcessID="4" ThreadID="2212" />
    <Security />
    <Data Name="DeviceObject">\Device\Http\ReqQueue</Data>
    <Data Name="Endpoint"></Data>

Open in new window

Any ideas?
Hi all,
We are renewing Exchange certificate, I dont need to create a certificate request, as its just a renewal.
I have the go daddy exchange SSL certificate, I have imported it in MMC --> personal certificates, but it doesn't show the key icon on the certificate that its trusted?

How can i get the key icon on SSL certificate?

Try to setup a SMTP server on Window 2012R2. Mail can deliver to the server but it stays in
Hi I have just started using always encrypted. I am using it on a webserver.
When i connect using sql managment studio it works fine however on the website thows and error about the permisions.

1st question, is it it safe to use on a webserver as the certificates and data are on the same device.
2nd question, how do i get it to work on IIS website?
Attached screenshot is what we have for the web server.  It is just IIS window 2012.
Do you have any ideas which one should be checked?

currentwe host our web server in house, and we recently require to work with pci compliance vendor to get compliance.
After it is scanned, we have just 5 issues related to Cipher in our web server.
do you know any tools we can use and hope to get it fixed? below is one of those.

The remote service accepts connections encrypted using SSL 2.0 and/or SSL 3.0. These versions of SSL are affected by several cryptographic flaws, including: - An insecure padding scheme with CBC ciphers. - Insecure session renegotiation and resumption schemes. An attacker can exploit these flaws to conduct man-in-the-middle attacks or to decrypt communications between the affected service and clients. Although SSL/TLS has a secure means for choosing the highest supported version of the protocol (so that these versions will be used only if the client or server support nothing better), many web browsers implement this in an unsafe way that allows an attacker to downgrade a connection (such as in POODLE). Therefore, it is recommended that these protocols be disabled entirely. NIST has determined that SSL 3.0 is no longer acceptable for secure communications. As of the date of enforcement found in PCI DSS v3.1, any version of SSL will not meet the PCI SSC's definition of 'strong cryptography'. See also : …
I can't seem to get FTP working when I bind it to a host name on IIS (version 8.5).  When I enter a hostname under the IIS FTP binding, I cannot connect.  When I enter nothing under the hostname, however, I can connect just fine.  How can I bind FTP to a specific hostname?  I want this so I can have 2 different websites using FTP on the same server.  Here is a screenshot:    

In the screenshot, I put the hostname in and then I go into windows explorer and type and I cannot access anything.  WIndows gives me the message seen in screenshot 2.   If I leave the hostname blank in the FTP bindings, everything works fine.  What am I doing wrong?  My goal is to have 2 different websites with FTP.  By leaving the hostname blank, my second website keeps FTP'ing into the first website.  Would love some help, thank you!
We have multiple companies under the same umbrella

the users from one company use

The users from another use

I have an iis application that I would like to be hit regardless from or ww,

assuming this is an iis configuration ?
We have a website (IIS) that shows PDF's as part of the interface. In the URL it displays the path and filename to the location of the file. With some ingenuity a web-user could guess other filenames and access files they shouldn't.

I believe there is method that we can use to convert the path/filename part of the URL to a guid so as to obfuscate this info.

I was led to believe that a reverse proxy was the tool for the job. We have setup our sophos firewalls as such but this feature isn't happening.

If anyone could advise it would be much appreciated, my skills in this area are somewhat lacking so any pointers welcome.

My web site has an web application in a subdirectory. I created first a virtual directory for it, then "convert to application". Both the site and the app share the same pool.

As long as I call a page of the app (a .aspx) directly through browser address, it works just fine. In addition, the app pages have non-restricted access to the hosting site's files.

But if I call such a page from a .htm page on the site (a non-app page), ASP.NET Event 1310, Event Code 3006, and in the Request information section, User: Is authenticated: False.

My guess was the account IIS uses to access a .aspx page directly is different from the account the web site uses to call such a page from one its own .htm pages.

How can I fix this? (no experience with such issues) Server is 2019.
Hi all,

I have a customer who want's to send us PO's in cXML format via their portal from Coupa. My problem is - that I do not know how to set up a service that can receive these XML-files over HTTPS.

We are running a Windows environment with the possibility to set up a IIS (if that's any help).

This is what they need to fill out from the customers end:
I am also willing to use a 3. party software which can do the job.

I have never done this before - so I kinda need a newbie guide for the best solution.
I hope you do understand my question - and even better - can help me :-D

I have a web site that I have published.  This is published on my own Windows Server 2019 server.  

When I hit the URL, it works great.  I can type,, and it all works like a charm.

I bought an SSL cert, installed it on the server, added the binding and now I need my http to redirect to https.

I've read up on this and I see that there is an HTTP redirect I can install on my IIS server.  

I see I can use IIS URL rewrite (looks intimidating, but I can figure it out).

I see some docs on editing the .htaccess file.

I need the "best" and easiest way to do this.  I prefer simple and I prefer to use the tools Microsoft has versus jumping thru a million hoops or having to have a PhD in IIS, so, if you please, guide me in my endeavor.



When I delete a web site in Windows IIS manager should I delete also the linked folder in wwwroot folder fo Windows? I wand to make everything is clean up.
I need to import an ssl certificate into my IIS web server.  The csr was not requested by this web server but I have access to the private key, and the .pem file from GoDaddy. The certificate is also in use by a different web server.
I believe I need to create a pfx to import into IIS. Is it possible to create a pfx file from just the pem and private key, or any other way. Does the intermediate certificate need to be added?

Thank you.
Hi there, I have just migrated across to a 2016 Server and having some issues running a site, have no idea why this is happening, as I can see the settings are the same in IIS

ADODB.Connection error '800a0e7a'

Provider cannot be found. It may not be properly installed.

oConn.Open "Provider=Microsoft.Jet.OLEDB.4.0;Data Source="&Server.MapPath("core/allcore.mdb")

Open in new window

Any help would be amazing!
Can one set the default page of a web site or application  without changing the web.config file for that site or application?

(Using Windows Server 2019)

Microsoft IIS Web Server





IIS is Internet Information Services, the web server included with Windows Server operating systems. All current versions are built on a modular architecture; modules can be added or removed individually so that those required for specific functionality are installed. The full installation of IIS includes HTTP, security, content, compression, caching, logging and diagnostics.