Microsoft IIS Web Server





IIS is Internet Information Services, the web server included with Windows Server operating systems. All current versions are built on a modular architecture; modules can be added or removed individually so that those required for specific functionality are installed. The full installation of IIS includes HTTP, security, content, compression, caching, logging and diagnostics.

Share tech news, updates, or what's on your mind.

Sign up to Post

I am getting an error when deploying my site to IIS on a machine with just .NET 4.0, but using entity Framework 6.0 and .NET 4.0 for the build.  "No Conceptual Schema node to embed as a resource".  

I try to look at things for the site in IIS and get the error message under .NET Compilation of "Cannot add duplicate collection entry of type 'add' with unique key attribute 'extension' set to '.edmx'.  

Runs fine in Visual Studio 2017.  Please help.

        <add extension=".rdlc" type="Microsoft.Reporting.RdlBuildProvider, Microsoft.ReportViewer.WebForms, Version=, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a" />
       ------> <add extension=".edmx" type="System.Data.Entity.Design.AspNet.EntityDesignerBuildProvider" />

Open in new window

5 Ways Acronis Skyrockets Your Data Protection
5 Ways Acronis Skyrockets Your Data Protection

Risks to data security are risks to business continuity. Businesses need to know what these risks look like – and where they can turn for help.
Check our newest E-Book and learn how you can differentiate your data protection business with advanced cloud solutions Acronis delivers

I have a Windows Server running IIS with a default website.
The default website has 4 apps:

--- Default Web Site
-------- ABC
-------- App2
-------- App39
-------- AnotherApp

They are all bound to port 80 and so currently, they are accessed by their directory.
For example, to get to the app called App39, you would type this in your web browser >

Rather than expose the server name, I'd like to have the URL look like a subdomain. In other words, instead of...
I would like to access the site like this ...

In IIS you can edit the bindings (port number and/or host header) on the root site only. But how would I do it on an app and/or virtual folder?

I suppose I could just create a new site in IIS, use host header and call it a day. But reconfiguring these apps would be a nightmare so I was hoping there was a solution.
I'm using IIS 7.5.7600 in windows 2008 r2 server.
The application pool is not responding some times and it requires to recycle to active again.
There is only one application in (API)  that application pool. During that time even IIS restart not help to fix this issue only it needs to recycle.
In the recycling condition, it was configured by default as 1740 minutes (it more than 24 hours) so I have changed to specific time 11:55 PM.
We are using ELMAH to debug this issue during that issue ELMAH shows all the methods in the API are throwing an error and looks like API methods not able to connect to the database.
This application pool is using.Net Framework 4.0. I have attached the screenshots of the application pool settings below. Why is the application pool not responding some time? How to fix this issue?
app pool settings 1app pool settings 2app pool settings 3
Hello, All.

Not sure if this can be done or not.
I am wanting to design a web-based media site, to catalog all my movies in.
And when the link is clicked on for the movie, I would like to have the default media player to launch the movie.

I read, doing this, would work. However, it does not.
<a href="file://J:/Movies/Drama/MovieDrama.mp4">Movie 1999</a>

Open in new window

Any idea's on how to accomplish this?

I will be doing this for my own network users to access, this is NOT something that will be for the World to see.
Just local area network only.

Thanks All.
Hi Experts,

After my server crashed and I had to do a forced reboot I've lost all remote services for my SBS2011 server. All seems well internal of the LAN in terms of file share, exchange, databases access.
Externally however I have nothing, no access to OWA, RWW, RDGateway not working. OWA/RWW not working internally either.

internally I can browse to http://server and see the IIS7 splash screen.
Internally I cannot browse to, I receive.... Not Found, HTTP Error 404. The requested resource is not found.

In IIS, the Default Website shows a "?" logo.
If I check the bindings I receive error as follows.....
There was an error while performing this operation
Value cannot be null.
Parameter name: SOurce

If I go to advanced settings on Default Web Site i get the same
Value cannot be null.
Parameter name: SOurce

Advanced settings screen then sheen shows, but with blank values. I have tried manually entering these, but "bindings" and "name" are not editable, and therefore I cannot complete the process.

I have tried running the Fix my network wizard from the console, but it stops working. Please see log below. Looks like a problem with a certificate, but my knowledge is limited when it comes to the details behind the wizards.....

[18120] 190303.181023.8431: General: Initializing...C:\Program Files\Windows Small Business Server\Bin\FNCW.exe
[18120] 190303.181027.4335: WizardChainEngine 

Open in new window

A few days ago the authentication settings got changed against all of the applications that are hosted within a single website, and I'm trying to track down what could have caused this.  We have a top level website, with about 30 applications under it, each with their own authentication settings.  What I found was that the top level settings from the root of the site (Anonymous and WIndows Auth enabled) had been pushed down to everything else.  This caused quite a few problems as expected until I manually went in and corrected each one.  This happened on 2 different web servers, which are used to load balance the applications.  

I know that I didn't go in a change the authentication for everything, so I'm trying to determine how this happened.  We did not have IIS Configuration Auditing enabled, so unfortunately that isn't an avenue I can lean on for help.

Any ideas what could have caused this, or things I could look at to investigate?
I have a rdweb service that is  published over the interent I want to secure the authentication with client certificate so the user can't access without it.
so how I can do it ?
can I make it on usb flashdisk and secure it ?
We have a network (hacking) intrusion going on in our network   , this started with our smtp server being infected we quickly stopped the smtp service and installed malware bytes on the machine. Malywarebytes detects the intrusion and keeps blocking the infonet.exe file from going to the websites . Multiple attempts are being made when the smtp service is turned on...
What we have done:
created a new smtp server with new IP's and installed smtp service and the problem followed
created a new server not on the domain and the smtp service added no detection
outbound connections and relay have been altered and changed for troubleshooting purposes.
troubleshooting has been done with the rules on the firewall as well.
duplicate tcp syn with different initial sequence number cisco asa

Any suggestions on what we can do to remove this from our network or find the source?

I'm seeing this message:

"[HttpWebRequest_WebException_RemoteServer] Arguments not found" in a SilverLight app. Further details relating to Application Pool recycling appear in the event log

WebHost failed to process a request.
Sender Information: System.ServiceModel.ServiceHostingEnvironment+HostingManager/4810345
Exception: System.ServiceModel.ServiceActivationException: Request to the service at '~/Services/WebAppSystemService.svc' cannot be dispatched because the virtual application at '/IDCLauncher' is shutting down. ---> System.InvalidOperationException: Request to the service at '~/Services/WebAppSystemService.svc' cannot be dispatched because the virtual application at '/IDCLauncher' is shutting down.
   --- End of inner exception stack trace ---
   at System.ServiceModel.ServiceHostingEnvironment.HostingManager.FailActivationIfRecyling(String normalizedVirtualPath)
   at System.ServiceModel.ServiceHostingEnvironment.HostingManager.EnsureServiceAvailable(String normalizedVirtualPath, EventTraceActivity eventTraceActivity)
   at System.ServiceModel.ServiceHostingEnvironment.EnsureServiceAvailableFast(String relativeVirtualPath, EventTraceActivity eventTraceActivity)
Process Name: w3wp
Process ID: 3064

Open in new window

Attached error log entry indicates apps pool recycling issue. Have changed timeouts to 0 in the relevant pool and after restart no joy. The SilverLight app, amongst other things, launches correctly but fails when user credentials are entered which we know is the point at which it tries to contact our separate database server on the same domain.

Used to work well but had this problem of late and not clear anything has changed. Running Windows 2008 R2 server. Latest SilverLight installed too.

All & any help gratefully recieved!

Thanks in advance
Something is wrong with our website which is corrected when IIS is reset. I want to find out what the root problem is.

We have a "web portal" (as my boss calls it) website which was created for our company by an outside contractor about 3 years ago. It sits on an EC2 instance we control. This web portal is used by our accountants for moving numbers around.

The problem is that approximately 10% of login attempts are unsuccessful, with correctly entered credentials. I have observed it myself. Any the failed login doesn't behave as one might expect. There's no error which appears on screen. Instead, the login screen simply 'resets' and appears as though no login has yet been attempted.

So I'm investigating, and I find that someone set a recurring task for IIS to reset every hour, indefinitely.

My boss wants a 100% success rate with logins using correct credentials. That's reasonable.

So, I need to determine what is going wrong, and is being temporarily corrected by resetting IIS. And I have no idea where to begin, other than looking at logs, but I'm not even sure what to begin looking at there either.
Active Protection takes the fight to cryptojacking
Active Protection takes the fight to cryptojacking

While there were several headline-grabbing ransomware attacks during in 2017, another big threat started appearing at the same time that didn’t get the same coverage – illicit cryptomining.

I’m hoping someone can shed some light on a problem I’m having with dates and Daylight Saving Time.

I have a .Net desktop app and a ASP.Net web app with a SQL database on a web server and database server.  We moved the system from 2008 severs to 2012.  The code for the applications wasn’t changed, only the environment.  We realized that some dates are being saved incorrectly and I think it’s due to DST change.  For example, a date that’s entered as ‘3/22/1980’ is now saved as ‘3/21/1980’ with the time section set to 11:00PM.  The time fields in the tables are DateTime types, but in most cases there is no time value to be saved.  I tried adding a date with an INSERT statement directly to the table and the date doesn’t change.  I can’t find any setting that’s different between the 2008 servers and the 2012 servers.  Is there a setting somewhere that I’m overlooking that controls this?  Or is it due to the upgrade to the 2012 servers?  

THe environment is  a Microsoft 2008 server with receives forwarded emails on port 25 and forwards them on Port 2525  to a comms service on the same server which is then ingested by another application
The emails  stopped arriving   3 days ago and tracing shows that the server itself is resetting connections for some reason. The
log on the forwarding server reports " connection reset by ourservename"

Using a simple mail client on the server we can send an email out port 2525 and this is received by the other application so it appears the smtp service is working.

SMTP seems very simple to set up with not much to configure - smtp only logs entries once emails arrive, as they are not arriving it is difficult to identify if it is in fact the smtp service that is resetting the connection. Any suggestions as to how to monitor incoming mail activity prior to reaching  the smtp service would be appreciated.
It seems the issue is in between the network packets arriving at this server and the smtp mail service.
How can I troubleshoot this further. Most of the network is supported by different outsourced entities who will only work on network components under their SLA.

Much appreciated
Hosts file (and DNS) changes are not being picked up by IIS or windows explorer.

I've created 2 HOSTS file entries, RHFS1 and RHFS2, these point to 2 servers with different IPs.

If I ping RHFS1 I get it's IP fine, likewise RHFS2.

I now change RHFS1 to point to the same location as RHFS2, pinging now gives the new IP.

I have an IIS virtual directory which uses RHFS1 as part of the path, let's say \\RHFS1\test and inside this is a file data.txt which contains a unique string, I've created this path on both server IPs used for RHFS1/2.

The idea being I want to easily switch between the 2 IPs and pick it up when browsing (ignoring caching issues for now).

Initially I point RHFS1 at the ip for server 1, browse in Windows explorer to this folder \\RHFS1\test open the data.txt file, it shows me this is server 1.

Next I point RHFS1 at the ip for server 2, it pings correctly, browsing in Windows explorer though I get the file for server 1, when I expect server 2. Similarly when used in IIS as a virtual directory.

To complete the test I remove the hosts file altogether, now I ping both RHFS1 and 2 and get not found, but both IIS and windows explorer still return the file for server 1. Similarly for an incorrect IP, I still get the old folder results back.

ipconfig /displaydns shows Name does not exist for RHFS1 and RHFS2.

After a few minutes, the changes seem to get picked up, but I need this to happen immediately or at least within a few seconds.

Any …
During virtual directories recreation I deleted IIS Exchange bakcend Website in IIS Admin panel (see attachment).
OWA and ECP do not work and Exchange Management Shell does no more connect with server so I am not able to use cmdlets to recreate the Backend website.

Is it possible to manually recreate the deleted site without reinstalling Exchange 2013?
Will a rollup update installation fix the problem? I have still not installed rollup update 21.

I also have a complete server backup (disk image) two years old. In the meanwhile no big changes have been made to Exchange so I believe the IIS part is still valid for today use. Anyway I don't know an easy way of extract the IIS info from the old disk image without putting the whole image back in server and launch it.

I have a old SBS2011 Server with Exchange 2010

I cannot access anymore to OWA. I get a message "440 Login Timeout"

I already tried to reset owa & ecp virtual directories and reinstalled IIS 7

The problem is still present

Any idea?

Best regards

I am trying to redirect (301) from (and from two other aliases, see below) to on a Windows Server 2008 running IIS. The redirection is working (with or without www) for the plain domain, but does not quite work when there is a query string e.g. It shows the correct page, but should change to "".

Here is the relevant part of web.config in the root. I added the clear command and the first two "add" statements in an attempt to get this to work. I also rebooted the server (during off hours) to see if there was caching causing my changes to be ignored.

  <clear />
  <rule name="Redirect Aliases with query" stopProcessing="true">
      <match url="(\/\/.*\.com)(\/.*)" ignoreCase="true" />
      <conditions logicalGrouping="MatchAny">
            <add input="{HTTP_HOST}" pattern=".*" />
            <add input="{HTTPS_HOST}" pattern=".*" />
            <add input="{HTTP_HOST}" pattern="(.*internaltaichichuan\.com)(.*)" />
            <add input="{HTTPS_HOST}" pattern="(.*internaltaichichuan\.com)(.*)" />
            <add input="{HTTP_HOST}" pattern="(.*internal-tai-chi-chuan\.com)(.*)" />
            <add input="{HTTPS_HOST}" pattern="(.*internal-tai-chi-chuan\.com)(.*)" />
            <add input="{HTTP_HOST}" pattern="(.*internaltaichiny\.com)(.*)" />
            <add input="{HTTPS_HOST}" pattern="(.*internaltaichiny\.com)(.*)" />

I have launched a transactional website a few days back on IIS on server 2012. The web page records transactions to a list below the main form one the user save it. The save generally refreshes the web page and takes 30 seconds to refresh.

Can someone guide me as to how i can optimize IIS version 8 to make the web page run faster.

IIS website on Server 2012 R2.  Website works fine until the server console is logged out. Then the site produces a 500 internal server error.  If we login the server to the desktop the site then works again.  What am I missing in IIS to make this happen?  We shouldn't need to login to the server for the website to function.

Any help would be appreciated.

Windows Server 2016
Internet Information Systems (IIS) v10


I have an IBM supplied script which creates a new application pool called 'analysis' and a corisponding virtual directory

The new app pool and 'DefaultAppPool' keeps crashing / stopping as soon as you try to access their URLs.

Looking at the event log the issue is that neither pool has permissions to access their on-disk folder's that their respective virtual directories represent. For the 'DefaultAppPool' this is [C:\inetpub\wwwroot]

Both app pools are running under the standard (and recommended / best-practice)  'ApplicationPoolIdentity'.


1) How can correctly I give the app pools permission (or rather the  'DefaultAppPool' virtual user) permission to these folders.

2) How could these folders (especially the 'DefaultAppPool' loose permission ?
Starting with Angular 5
LVL 13
Starting with Angular 5

Learn the essential features and functions of the popular JavaScript framework for building mobile, desktop and web applications.

I manage a web site that utilizes IIS with Windows Server 2016.
Users login with their Windows account credentials.

If I check mark - user must update password on next logon - the user received the regular prompt and cannot log in.

How can I add the logon options to update/change password to my website?
Hello experts,

Good day to you all. I would like to have an experts opinion or knowledge-base article on how to enable ssl using self-signed certificated in windows server (iis).?

Currently, we have an active directory (****.local) domain with a child server (hrms.****.local).
In this child server Windows IIS is enabled and currently working with http binding only on port 8080 (tcp).
Now we want to implement https binding and restrict http access.
Kindly help me through this with your valuable advice.

note - It is an ASP .net application for our company internal usage.

Thanks & Regards,

Mohamed Marzook
I installed Wordpress on IIS 10 on windows server 2016. Everything works fine. Now I need to make sure the wordpress is secure, I can make all the core files read only which is what i did, but  in doing so I have to manually update wordpress or change the rights update and change it back.
Wordpress has a bunch of methods to secure it, but do I set these security measures on IIS.

inserting number with decimals in table.column the decimal point is gone
the column type is numeric (18,10)

the database was moved from a sql 2008 srv to sql 2016

language settings on both servers are the same. english
connection string info is like
Response.CharSet = "UTF-8"
Response.CodePage = 65001

session("DatabasePath") = ""
session("DatabaseAddress") = "localhost"
session("DatabaseName") = "dbname"
session("DatabaseUsername") = "dbuser"
session("DatabasePass") = "1234asdf"(example)

Conn =	"Provider=MSDASQL;Driver={SQL Server};" & _
		"Server=" & session("DatabaseAddress") & ";" & _
		"Database=" & session("DatabaseName") & ";" & _
		"Uid=" & session("DatabaseUsername") & ";" & _
		"Pwd=" & session("DatabasePass")

session("site_Conn") = Conn

Open in new window

the users types values like 1,23 (european)
it then gets converted to 1.23
but in dbase value is 123

Maybe the conversion from 1,23 to 1.23 is allready going wrong?
There are so many IIS redirect questions. I've looked through many but they all seem to look to redirect to a sub domain. I have the opposite issue. Warning, NOT an IIS admin.

Our vendor setup our new server. Everything works great. Except the site is as follows (not real of course): The site will not answer any other responses. I'm looking for to redirect to the actual live app of

My initial gut feeling says to create a new Virtual Directory, type in the details and Bob's your uncle. But I'm not sure of this.

Thoughts from the community, please.

Windows Server 2008R2
IIS 6.1
I have a script to generate app pools and sites
I want for some sites that the anonymous authentication uses the app pool identity
I know how to do that in the IISmanager but I have a script

this is part of the script
%1 is paramater site name %webloc% is path

%systemroot%\system32\inetsrv\appcmd.exe add apppool /name:www.%1
%systemroot%\system32\inetsrv\AppCmd add site /name:www.%1 /physicalPath:%WebLoc%\www.%1\website /bindings:http/*:80:www.%1
%systemroot%\system32\inetsrv\appcmd set app / /applicationPool:www.%1
%systemroot%\system32\inetsrv\appcmd set apppool / /managedRuntimeVersion:v4.0

This is what my question is about to use the application pool identity as anon user
%systemroot%\system32\inetsrv\appcmd set config / -section:anonymousAuthentication /username:"" --password
will / work as site name?

or should it be
%systemroot%\system32\inetsrv\appcmd set config www.%1 -section:anonymousAuthentication /username:"" --password

Microsoft IIS Web Server





IIS is Internet Information Services, the web server included with Windows Server operating systems. All current versions are built on a modular architecture; modules can be added or removed individually so that those required for specific functionality are installed. The full installation of IIS includes HTTP, security, content, compression, caching, logging and diagnostics.