Microsoft IIS Web Server

35K

Solutions

16

Articles & Videos

29K

Contributors

IIS is Internet Information Services, the web server included with Windows Server operating systems. All current versions are built on a modular architecture; modules can be added or removed individually so that those required for specific functionality are installed. The full installation of IIS includes HTTP, security, content, compression, caching, logging and diagnostics.

Share tech news, updates, or what's on your mind.

Sign up to Post

Hi All,

I just renewed one of our web certificates and im now trying to export the certificate to add to another server in a cluster. But the export wizard wont allow me to export the cert private key a sits greyed out?

Any way I can get round this?
0
Online Training Solution
Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

Hi

I'm developing a web application to be used by thousands of users.

The development is done under Alpha anywhere that relies on IIS
My question is the following: what are the limitations of IIS in terms of "servicing" users ?
How many users can hit the server at the same time ?

What are the configuration possible if I have 15000 users ?
How do u calculate the need ?
Thx
0
Greetings:

I recently performed a clean install of Windows 10 Pro on my desktop and included IIS version 10.

I'm looking for the steps to allow other computers on my network to view pages on my local website and client websites under development. I believe this is a security issue but I'm not sure.

Any assistance is most appreciated.


Much thanks,
David Bach
0
Hi all, I've got a very old .asp web application that prints to pdf.  I developed this app 13 years ago, and we've now come to record number 10,000 and I need to expand the record number field in the pdf to accommodate for the extra digit.  I've managed to find the file 'requisition.pdf' and I can edit it, I've moved things, expanded the field, but I don't see my modifications reflected in the application, when the pdf is created inside the application.  I move things around but everything stays the same in the app.  What am I missing here?  It's been 13 years and I'm struggling to remember how I did this.  

Some code (reqnum is the field in question):

Dim UserID
UserID = rsReqs("UserID")
strsql2 = "SELECT * FROM [User] Where UserID = '" & UserID & "'"
            set rsUser = Server.CreateObject("ADODB.Recordset")
            rsUser.Open strsql2, connDB, 1, 2
Dim User
User = rsUser("FN") & " " & rsUser("LN")
Set FdfAcX = Server.CreateObject("FdfApp.FdfApp")
Set outputFDF = FdfAcX.FDFCreate      
outputFDF.FDFSetValue "ReqNum", rsReqs("ReqNum"), False
outputFDF.FDFSetValue "UID", User, False       
outputFDF.FDFSetValue "DateEntered", rsReqs("DateEntered"), False       
outputFDF.FDFSetValue "DueDate", rsReqs("DueDate"), False
If rsReqs("Vendor2") = "" Then
outputFDF.FDFSetValue "Vendor", rsReqs("Vendor1"), False
Else
outputFDF.FDFSetValue "Vendor", rsReqs("Vendor2"), False
End If

(a lot more code in here)....

If rsReqs("qty19") > "0" then
outputFDF.FDFSetValue "qty19", …
0
HI all,

Im currently workign on a project on tightening security on our webservers. First step on this is disabling weak Ciphers that are still currently enabled. Im aware of the list of known weak ciphers, but im wondering if Im to disable these, what the impact be on the browsers connecting in?

We will disable SSLv3.

TLS 1.1 - Not sure what impact this will have?

Weak SHA  - RC4 MD5

Is anyone aware of a list  browser versions that maybe impacted?
0
For HKLM\SYSTEM\CurrentControlSet\Services\HTTP\Parameters\DisableServerHeader (REG-DWORD) i realised that on some IIS servers in the registry there is no such entry.

May i find out if this entry is not found in the registry, what is the default?

Thanks!
0
Is it possible for me to map a drive for someone to some files on my server without giving them permission on the server or how would I set this up on the server side to ensure minimal access.
0
Hi there,

I need some help write a powersheet so that when i run it on my IIS 7 or 7.5 it will check if each of this exisit. If exisit, it will throw a statement, "exisit, please have it removed"

http://localhost/iissamples
http://localhost/iisadmpwd
http://localhost/IISHelp
http://localhost/Printers

I want to ensure that  the default Virtual Directories and the files and folder they point to should be removed.
0
Hi there,

Any kind experts out there can help me to list the following: %systemroot%\system32\inetsrv\ on a default windows IIS 7 or 7.5 in a text file or screenshot will be of great help.

As i do not have access to a IIS 7 or IIS 7.5 at the moment.

Any references to Microsoft website or MSDN will be of great help too.

I am trying to determind if in the default IIS installation the folders are there:
  1. inetsrv\IISADMPWD
  2. inetsrv\IISHelp
  3. inetsrv\Printers
  4. inetsrv\IISSamples
0
Hi there,

i need help to write a windows power shell script to run a command to check if IIS_IUSRS group have access to the iisWasKey revoked.

- I need the script to pull the windows server <MachineGUID> dynamically before running the command:

- Obtain the machine GUID at the Registry Value "MachineGuid" in the Registry Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography

Next, open a command prompt and run the following icacls command, ensuring that BUILTIN\IIS_IUSRS(R) has been removed:

icacls %ALLUSERSPROFILE%\Microsoft\Crypto\RSA\MachineKeys\76944fb33636aeddb9590521c2e8815a_<MachineGUID>

Open in new window


Refernce to this is: 3.11 Ensure 'encryption providers' are locked down of https://benchmarks.cisecurity.org/tools2/iis/CIS_Microsoft_IIS_7_Benchmark_v1.8.0.pdf

Great thanks!
0
Technology Partners: We Want Your Opinion!
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

i AM TRYING TO SET UP AN OOKLA SERVER FOR MY COMPANY

IM USING SERVER 2012 - WHEN TESTING FROM OOKLA'S SERVER TESTER TOOL .

ONE OF THE SECTIONS IS GIVING ERROR 405 METHOD NOT ALLOWED..

I NEED TO ALLOW POSTS FOR THAT FILE OR LINK TO WORK .. THE FILE IS BY NAME (UPLOAD.ASPX)

I WANT TO KNOW  HOW TO GIVE PERMISSIONS - WITHIN HANDLER MAPPINGS

AND WHAT PERMISSIONS I NEED TO GIVE.
0
I have 2 servers (Windows Server 2012 R2 and Windows Server 2008) being scanned by Qualys that have surfaced this finding:

HTTP Security Header Not Detected HTTP Security Header Not Detected port 80/tcp

THREAT:
This QID reports the absence of the following HTTP headers:
X-Frame-Options: This HTTP response header improves the protection of web applications against clickjacking attacks. Clickjacking, also known as
a "UI redress attack", allows an attacker to use multiple transparent or opaque layers to trick a targeted user into clicking on a button or link on
another page when they were intending to click on the the top level page.
X-XSS-Protection: This HTTP header enables the browser built-in Cross-Site Scripting (XSS) filter to prevent cross-site scripting attacks. X-XSSProtection:
0; disables this functionality.
X-Content-Type-Options: This HTTP header prevents attacks based on MIME-type mismatch. The only possible value is nosniff. If your server
returns X-Content-Type-Options: nosniff in the response, the browser will refuse to load the styles and scripts in case they have an incorrect MIMEtype.
QID Detection Logic:
This unauthenticated QID looks for the presence of valid X-Frame-Options, X-XSS-Protection HTTP and X-Content-Type-Options headers in a
HTTP request.
IMPACT:
Depending on the vulnerability being exploited, an unauthenticated remote attacker could conduct cross-site scripting, clickjacking or MIME-type
sniffing attacks.
SOLUTION:
N/A
0
When I type in Localhost in the web browser on a Server 2008 RS webserver, i get this message. I was attempting to install PHP  7.0. and was doing some testing of phpinfo.php file and it could not find it.   127.0.0.1  does not bring up a page either.
0
are permissions to be set for all users in inetpub and do they filter down to the root directory ?

Are all of the accounts such as Creator owner, system, etc. to be set to full permissions?
On the other hand are there some to be left out in inetpub and basic permissions to be set for the root directory?

Michael
0
Hi,
I'm getting ready to migrate to Exchange 2016 from Exchange 2010.
I've asked questions, watched videos and read many guides online for the migration.
All resources are similar in steps that need to be taken.
However, only one resource (A video on Pluralsight.com) mentions "Getting IIS ready for Co-Existence". They say to run the attached command.

My questions.
1. What exactly is this command doing and is there a way for me to do it using IIS GUI? Or is there  way to do it in several shorter commands? I seem to recall running this one long command on a test server months ago and It gave me some powershell errors I couldn't get past.

2. Will the Exchange 2016 setup automatically  take care of what this command is doing?

Thanks!
Nacht
IIS co-existence
0
People,

Can anyone here please assist me with the PowerShell script to assist me with restarting the Windows Server 2012 R2:

If the HTTP service is unavailable,
then restart IIS server only.

How to do it in Powershell script so that the script is running every 1 minute ?

Thanks.
0
Hello Everyone --

We are currently deploying certificates (CBA) for our environment and ran into an issue with iOS devices.  For Android devices, we have exported the certificate (with private key) and installed it on the device for authentication.  Within the client, you can specify the certificate you want to use.  

Now we are trying to deploy it on iOS devices.  We e-mailed the certificate to the iOS (10.3.2) device and installed it.  It shows up as a certificate under Profiles.  However, when we blank out the password under the mail account, it doesn't seem to be picking up the certificate in the native email client.  We tried reinstalling the certificate as well as recreating the account from scratch.  

Any ideas?

Thanks.
0
Hi all,

I have a number of 2008 servers that are going to need  self signed certs renewing. We used a root CA on our domain to create the certs. What is the quickest way to do this?

Thanks

Matt
0
I have a virtual 2008 r2 web server for an Intranet.  I want to upgrade that server to a 2012 server.  Is there an easy way to accomplish this?
0
Three Reasons Why Backup is Strategic
LVL 4
Three Reasons Why Backup is Strategic

Backup is strategic to your business because your data is strategic to your business. Without backup, your business will fail. This white paper explains why it is vital for you to design and immediately execute a backup strategy to protect 100 percent of your data.

I moved our company to a new server this weekend, and I'm having issues with the FTP site we run via IIS on the server. I have CNC machines that use FTP to pull their program files in, but two machines are having problems doing that.  They can pull a directory listing just fine, but when they issue a RETR command to pull a file, IIS gives a 550 error.  However, when I connect with the same user via Filezilla, it works just fine and I never get a 550 error.  The user has permissions to the files, but during troubleshooting I've gone to the point of giving Everyone full control of the directory, and the 550 error persists on the CNC machines.  How can I figure out why IIS is giving that error for just those machines?
0
Hi,

I am trying to use classic ASP on IIS6 on Win7. I went to control panel->Programs->Tuen win features on or off->IIS->App Dev Features

After checking ASP/ASP.NET.....  I needed to reboot, but after rebooting, they were unchecked again.

any ideas?  thanks
0
I am using https://www.screamingfrog.co.uk/seo-spider/ to check the website SEO and to crawl the site, but I get a few errors even though webmaster tools show no errors!

I am using Cloud Flare, on the site, but I have put this into development mode until the below is resolved. All pages should be HTTPS which all are, but I get te below errors on a few pages using this software.

Crawler Errors:

1.      Error 301 http://www.alexjenkins.tech/ - This is redirecting to https, but it should show 200 code
2.      Error 301 http://www.alexjenkins.tech/contact - This is redirecting to https, but it should show 200 code
3.      I can still see the 500 error code from some of the blog pages as you will see if you run the above software, you might use a different software that might help you more, but the results are strange.

4.      I don’t know where this is coming from at all https://www.alexjenkins.tech/blog/wwww.alexjenkins.tech again showing in the software

Any advance would be welcome.
0
IIS : Web application works inside IIS Server (Localhost) but not outside

I am experiencing problem with my web application which is configured on Port 90. It works fine if accessed within IIS Server i.e. right-click --> browse
but when I accessing it from outside, nothing happens.

I tried using IP address instead of server name.  

I have configured application under root IIS (not under default website).  
Applicatio name is: Myweb
default page: login.aspx

When I browse it locally , the link is:  http:\\localhost\login.aspx instead of http:\\localhost\Myweb\login.aspx.
Except port I haven't configured anything else.

Could you please help?

Note: Server is discover able from outside, permissions are correct, application pools are correct.
0
After I reboot  Windows Server 2016, my websites do not 'start' in IIS 10 (the IIS service starts and my FTP sites start automatically)  I can manually start all my sites via IIS Manager and all is fine, but this is very inconvenient, especially if a reboot is required overnight when Windows updates are applied.

This behavior first exhibited itself after I used the 'netsh http add iplisten' command to restrict IIS from listening on all but one of the IP addresses bound to this server,

I no longer have that restriction and have added that address back in to the usable pool via the iplisten command, yet whenever I am required to reboot the server, I am forced to manually start each of the websites I have (25+) via the IIS Mgr.

Any suggestions on how to restore the auto-start functionality to the websites would be deeply appreciated.
0
Currently I have 1 IP on an IIS web server. I need to add in 3 more website and each website must be reachable on http and https

Should I

1. add in 3 extra IP address. Bind each site to an IP on port 80 and port 443. In DNS add in hostname for each site with the appropriate IP address

2. stay with 1 IP address, use host headers for each site
0

Microsoft IIS Web Server

35K

Solutions

16

Articles & Videos

29K

Contributors

IIS is Internet Information Services, the web server included with Windows Server operating systems. All current versions are built on a modular architecture; modules can be added or removed individually so that those required for specific functionality are installed. The full installation of IIS includes HTTP, security, content, compression, caching, logging and diagnostics.