Microsoft IIS Web Server





IIS is Internet Information Services, the web server included with Windows Server operating systems. All current versions are built on a modular architecture; modules can be added or removed individually so that those required for specific functionality are installed. The full installation of IIS includes HTTP, security, content, compression, caching, logging and diagnostics.

Share tech news, updates, or what's on your mind.

Sign up to Post

I need to export all the sites/configurations in IIS from an IIS 8.5 installation to IIS 10.  When I try using shared configuration the majority of my IIS icons on  IIS 10  are gone.  What's the best way to copy all my sites, app Pools and configuraitons from IIS 8.5 to IIS 10?
Free Tool: Port Scanner
LVL 12
Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

What are the differences between the IIS & IIS 6 managers within Server 2016?

Do the exact same values exist in both the IIS & IIS 6 managers?

Will modifying one of these values within the IIS manager be reflected within the same entry within the IIS 6 manager?

Or are there any values that are truly unique and only exist within either the IIS or the II 6 manager that don't exist within the other manager?

My company have some VM which running IIS web server on Windows OS. Based on BitSight - Web Server Vulnerabilities.

My tasks are assigned as follow.

Services require to reverted back
2. Where to disable SSLv2 and SSLv3 protocol, the Diffie-Hellman encryption length also require to use 2048bit
3. How to update those outdated IIS server

Ps advice me accordingly as i've never done this before as require by our Cyber team.

If there is any best practice to perform hardening, ps advice and share for my knowledge.



We have a web server running on Windows 2008 SBS. Windows updates up to date.

The website uses a third party payment called securepay and now it only accepts TLS 1.2.

How can make our web server to send TLS 1.2 as a default then if it is rejected then send TLS 1.1 or TLS 1.0?

Hello, i have a server 2012 R2 (with IIS installed) - now we have an E: drive where we are going to hold just dummy files. i want the files to accessible over the web.

Now when i put the server ip's in my browser, i just see the IIS page. Only things i did so far, was enable directory browsing, and added virtual directory to the E: drive on the server.

What am i missing here?
I have IIS set up as a reverse-proxy for a website, converting it from port 80 to 443.  When the original site sends an HTTP 403 redirect, the proxy shows the error:
Server Error
502 - Web server received an invalid response while acting as a gateway or proxy server.
There is a problem with the page you are looking for, and it cannot be displayed. When the Web server (while acting as a gateway or proxy) contacted the upstream content server, it received an invalid response from the content server.

I tried messing with the "Reverse rewrite host in response headers" in the Application Request Routing section and it did not fix the problem.

Does anyone have any information on what is actually happening here  or how to troubleshoot this problem?
We have an MVC app with a significant amount of javascript code.  We have found a number of our users' browsers are not refreshing Javascript files when they change and are updated on our IIS server.  We have needed to CTRL+R to force a refresh on these browsers.  

How can we address this?
Hello Experts, i need some help configuring/optimising IIS8 on a Windows 2012 Server correctly

We have 1 HP DL380 G8 with 128GB of RAM and 2 x Xeon E5-2680 2.70GHz Processors

The Server is running a single PHP driven Website.  At present, we have about 4000 users connecting to the Server from all over the world and running requests on it.  The Server is only using about 9% of its memory and 10% of its CPU.  We have noticed around midday (12:00 - 13:00) that the website begins to run slow on some operations then speeds up towards the end of the day.  We know that with the amount of users and traffic, the system is well used all day.  We have an 800MB leased line which is showing a utilisation of 7% so the issue is nothing to do with bandwidth.  We have a WatchGuard firebox as our firewall and cloudflare DNS routing.

I don't know that much about IIS8 and its in depth configuration. Surely we are not using the power of the server correctly to serve client requests.  Last night, i changed the worker processes from 1 to 2 to see if that improves performance.

Is there an issue with queue lengths, have i not given IIS enough resources?

I have attached a screen shot of MS Resource Monitor from 8:23am this moninrg

Any help or guidance is greatly appreciated


We have a webservice interface that traverses a VPN tunnel over port 80 that has been working fine for years.  With a new customer we have to go over the web via HTTP so we are attempting to setup a redirect using IIS so that the Webservice call will be redirected to interface.  We can from a browser type in the url to the webservice and it completes just fine, however when we try to make the call using IIS it fails with a 404.  The error we are getting is below:

2018-06-04 18:49:47 GET /favicon.ico - 6443 - Mozilla/5.0+(Windows+NT+6.3;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/66.0.3359.181+Safari/537.36 404 4 123 1
I am trying to secure the wordpress files and folders like wp-admin and includes etc. On apache this was a few line of code in .Htaccess how do I do this in IIS10 web.config file
Free Tool: SSL Checker
LVL 12
Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

I have webdav in my office, the users mount  the webdav like Map drive but in some folder they add files and folder and as soon the copy is done the files dissapear I checked in the server in the location where we have those files  and all the folder and files are in the server but not is displaying through webdav  any Idea Why

this is configurate in windows 2012 R2,  IIS with SSL
I've got a exchange 2013 on a windows server 2012 and every week around the same time, the cpu goes to 100% and the server reboots on its own. I tried everything and am out of options what may cause this, its a virtual server
hi all

A little question on restricting a proxying URL please.

I have the following that matches users coming into our website ( for example) and the proxying works fine but we want to be able to stop people getting to the proxied content if the URL contains "/private" in it.

Can one of you guru's advise how I go about that please, I'm assuming its simple but the system is live so I don't want to "play" to learn

so, as an example: would work would fail, perhaps show a error message?

   <rule name="" patternSyntax="ECMAScript" stopProcessing="true">
        <match url="^(.*)" />
        <conditions logicalGrouping="MatchAll" trackAllCaptures="false">
            <add input="{HTTP_HOST}" pattern="^$" />
            <set name="HTTP_ACCEPT_ENCODING" value="" />
        <action type="Rewrite" url="{R:1}" logRewrittenUrl="false" />

Open in new window

Dear EE,

My users report web service disconnection and when i viewed event logs i found below details.


The Software Protection service is starting.


Initialization status for service objects.
C:\Windows\system32\sppwinob.dll, msft:spp/windowsfunctionality/agent/7.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:rm/algorithm/inherited/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:rm/algorithm/phone/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:rm/algorithm/pkey/detect, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/ActionScheduler/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/TaskScheduler/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/statecollector/pkey, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/volume/services/kms/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/volume/services/kms/activationinfo/1.0, 0x00000000, 0x00000000


The Software Protection service has completed licensing status check.
Application Id=55c92734-d682-4d71-983e-d6ec3f16059f
Licensing Status=
1: 439e8c91-ff38-4ecb-ba0b-32658680c952, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)(?)(?)])(1 )(2 )]
2: 5b338ef7-8d99-45cb-bb59-618bd328b4a4, 1, 0 [(0 [0xC004F014, 0, 0], …

When launching a remote app. we are getting the error 'Remote App Disconnected... There are no available computers in the pool. Try connecting again or contact your network administrator.'

My boss seems to think it's because he hasn't installed the RDS CALs, however when I look at the RD Licensing Manager I have a green check mark next to our server's name and under the License Version and Type  window I see 'Windows Server 2016 - Installed RDS Per User CAL'.

How can I tell if the CALs have been properly installed?  or do I have a different problem?

Please let me know.

Hello Folks,

I've an ASP.NET website that is consuming more RAM on IIS worker process. Please see below points.

1. The website comprised with around 700 aspx pages along with 100 user controls.
2. The website takes around 1 GB RAM once worker process starts.

Could you assist below points?
1. How to diagnose, what are the problems with either memory leaks, unnecessary data loaded or other factors?
2. How to resolve it?

Best Regards
Hi I have 2 iis instalations on different servers within same network. 1 x iis is hosting rdweb, 1 x iis has a website. I would like users to connect via vpn and be able to access the website. Ports 80, 443 are currently forwarded to the rdweb iis server. I'll have a dns entry pointing to the external IP for the RDWEB. how do i get to point to the second IIS server? Read some things about IIS redirect, not sure that if thats the way to do this? IF it is detailed instructions would be helpful :)

IIS 6 & Redirecting W3C logs to a shared folder. I would like to store the W3C logs generated on our IIS server to a shared folder on another server that I use for storing logs. I have been able to change the log path in IIS to the shared folder and it has the correct permissions to write and store logs in it.

My problem occurs in instances where the logging server is not available, like a schedule reboot, and the shared folder cannot be written to by the IIS application. I have found that IIS does not attempt to re-establish the connection to the shared folder. And further when the logging path is switched back to the default path on the IIS server, there is a gap in the logs. So it doesn't appear IIS is caching the logs.

Appreciate assistance in diagnosing this problem and resolving it.
Message HeaderHello,

We are having some random smtp problems. I am trying to troubleshoot this one in particular. The message header shows it took 136 days for the message to actually get processed by the smtp server. I am not sure what logs/info to look for to find more information. It took 136 days to send from our smtp to Gmail relay. Can you please help?
Keep up with what's happening at Experts Exchange!
LVL 12
Keep up with what's happening at Experts Exchange!

Sign up to receive Decoded, a new monthly digest with product updates, feature release info, continuing education opportunities, and more.

when we open owa and go to option >See All option following page not loading properly.  please check attachment.
MS Exchange 2010.
I have a .Net web application in Azure Web App using custom domain name (including www) and bind to custom SSL. I want to redirect all requests to "/index.html" page using Web.config.

Meaning all these should be redirected:

How to achieve that? I can use another way to configure instead of Web.config if possible, but I cannot do at DNS level.
We have been struggling with setting up our website on a GoDaddy Virtual Private Server. Please Help!

We have a .net program that connects to First Data to process credit cards. It running on a Windows 2012R2 + Plesk Virtual Private Server hosted at GoDaddy.We need to send confirmation emails from the server after a transaction is processed. I am attempting to send an SMTP email on a GoDaddy Plesk VPS and am having difficulty with the syntax.  Here are examples of what has been tried with the corresponding error messages.

I want to configure a PHP website on IIS. I have XAMPP installed on the server and my PHP pages run absolutely fine through XAMPP.
I want to run my site through IIS. I have got my site started but when browsed it gives error ERR_NAME_NOT_RESOLVED.
I have followed this instructions and some others but with no luck.
I am new to PHP and IIS, so any help would be appreciated.
In Magento having 500 internal server error after clicked the Payment Methods button in admin. No log is captured in "var/log/system.log" nor "var/log/exception.log" when it happens.

The site has this Special Promotions extension installed
When set one of its module at "app/etc/modules/Amasty_PromoBannersLite.xml" to be inactive, then there is no error. But this error never happen on Apache web server even if the module is active.

Need help to find out what is the cause of the issue and solve it.

This is the system specification that having error:
Magento CE
PHP 5.6.31
Windows Server 2012 R2
IIS 8.5
I am looking for a powershell script I can run on my web server that will poll the health of an application pool running a website. I am not too familiar with IIS so would be interest to know what kind of health checks could be performed. The reason for this is the application server restarted after a crash impacting our users... In future I want to be able to monitor this detect if there is a recurring problem. Any ideas?

Microsoft IIS Web Server





IIS is Internet Information Services, the web server included with Windows Server operating systems. All current versions are built on a modular architecture; modules can be added or removed individually so that those required for specific functionality are installed. The full installation of IIS includes HTTP, security, content, compression, caching, logging and diagnostics.