Microsoft IIS Web Server





IIS is Internet Information Services, the web server included with Windows Server operating systems. All current versions are built on a modular architecture; modules can be added or removed individually so that those required for specific functionality are installed. The full installation of IIS includes HTTP, security, content, compression, caching, logging and diagnostics.

Share tech news, updates, or what's on your mind.

Sign up to Post


I'm having an issue with setting up an IIS FTP server (on a 2008R2 box). I have succeeded in setting up the server, users, publish the directory, setup NAT on the firewall. Things are looking pretty much ok but I am struggling at this point:

 220 Microsoft FTP Service
234 AUTH command ok. Expecting TLS Negotiation.
USER username
331 Password required for username.
PASS *****************
230 User logged in.
200 PBSZ command successful.
200 PROT command successful.
211-Extended features supported:
211 END
200 OPTS UTF8 command successful - UTF8 encoding now ON.
215 Windows_NT
257 "/" is current directory.
250 CWD command successful.
200 Type set to A.
PORT 172,16,101,102,208,219
501 Server cannot accept argument.
250 CWD command successful.
200 Type set to A.
PORT 172,16,101,102,208,222
501 Server cannot accept argument.

Open in new window

I guess this is somehow linked to passive FTP mode but
  • it happens even if I explicitly request active mode only
  • I have defined the passive ports in the "FTP firewall support" tab and NAT-ed them to the correct internal IP
  • this works fine if connecting locally (localhost) but not from LAN no WAN

I'm sure it is a "classic" one (seeing lots of post googling this) but can't really figure it out.

Any advice most appreciated
10 Tips to Protect Your Business from Ransomware
10 Tips to Protect Your Business from Ransomware

Did you know that ransomware is the most widespread, destructive malware in the world today? It accounts for 39% of all security breaches, with ransomware gangsters projected to make $11.5B in profits from online extortion by 2019.

Hi guys

How do you give someone the private key for the SSL certificate but un-encrypted? I don't get what they are saying.

I've got a Windows 2008 R2 web server that I created the CSR onto. Then I got the certificate from the provider and have applied the certificate to this to complete the request.

My colleague needs the private key. I exported it as a .PFX file, but when you do that, it is password protected. He needs it un-encrypted.

Do you use the MMC console to do this and then export it as a .CER file? Will that be correct?

when you use a 3rd party to host your website, where does the responsibility typically split in terms of the technology stack on who has to apply patches to all the relevant components of the web stack? e.g. do they typically patch your CMS and any underlying databases, or only lower levels of the stack?
Hi guys

I am going to be buying a multi-EV domain SSL certificate. This domain will have quite a few sub-domains. When i want to create the certificate request on the server, in the common name section, do I just put in the domain name only? So would I put ''? And not '*'. I assume i would only put an asterisk if it was going to be a wildcard ssl right?

Thanks for helping
Windows server 2012 IIS 7 PHP convert doc/docx to PDF.  

I can successfully use OfficeToPDF from the command line as expected but when I try to get it to work with php through exec, no luck.

I have tried changing the DOM permissions as outlined here =>

When the script runs I can see Word open in task manager but the script will just hang until I kill the word process.
Hello, All;

Active Server Pages error 'ASP 0126'
Include file not found
/cs/Header.asp, line 3
The include file '../Imported_Data/ACN.asp' was not found.

Code Line
<!--#include virtual="../Imported_Data/ACN.asp"-->

Open in new window

OK. I have been using this for years, and it still works on my Win2016 Server.
However, running it on my development system, of which is a Win10 Pro.
No longer works.
Enable Parent Paths
Is Enabled in IIS, for the Default Web Site, and all sub sites.

WHAT in the heck did Microsoft do, in the last update to break this?

The actual path of the files is stores in

I reference this location with all my sites.
And have NEVER had an issue, until the most recent Windows 10 update, and now it is broken.
At least on my Win10 system.
As stated, it all still works under my Win2016 servers.

Any idea on what can be done in order to get this back working again?
I would really hate to re-code all sites, just because of this one stupid issue.

Hi All,

I have an odd problem which I just can't see to figure out for the life of me! I'll give the scenario below:

  • Exchange 2013 Server OWA doesn't work using the FQDN of unless done from the exchange server itself.
  • Browsing to the IP loads the OWA page
  • DNS all resolves to the correct IP address and NS lookup also works correctly.
  • Works perfectly fine externally

If everything wasn't resolving as expected I'd definitely blame DNS but due to the odd nature of all the records resolving as expected I'm not too sure.

Any help would be appreciated.

Kind Regards,
error logSuddenly my Silverlight application not accessing using host name. it works well with ip address. all setting are up to date and also ping are show for server name. please find attached screen shot. clientaccesspolicy.xml and cross-domain.xml are also added but it not work with computer name.

In some pc this work with pc name also.

Please suggest any solution.
Citrix Standalone Storefront Server. This is the IIS server. Created Citrix URL. i.e Website
Now the website has created with default FQDN of the server Hostname. Which is very lengthy. It is not a user-friendly URL.
So I would like to change the URL with a user-friendly name. Like
First I have created DNS record (Canonical name) and SSL Certificate to
Bind the SSL certificate in IIS.
But I couldn’t able to resolve the URL.
Do I need to do any configurations in IIS? Please suggest.
I have an IIS server (Windows Server 2012 R2) that has a Default Web Site with an application underneath it. I can browse and use that application fine while on the local network or any local VLAN. When I try to access the application from outside the firewall I get a 404 - File or directory not found error. Obviously I am able to reach the server and website through the firewall or I wouldn't be getting this error. I would get a blank response from the site not reachable. I've proven this by disabling the firewall rule that allows access. It seems as though there must be some kind of permissions or authentication issue preventing access to the application but I don't know what it would be.

I also tried setting up a subdirectory of this site with the default iisstart.htm and iis-85.png files that Microsoft provides. I cannot browse this subfolder either. Same 404 error.

Please help. Thanks in advance. Brian
Newly released Acronis True Image 2019
Newly released Acronis True Image 2019

In announcing the release of the 15th Anniversary Edition of Acronis True Image 2019, the company revealed that its artificial intelligence-based anti-ransomware technology – stopped more than 200,000 ransomware attacks on 150,000 customers last year.

I noticed most web site hosts offer a 'cpanel' to the website owners/customers, which seems to be different to the CMS for editing pages. As a novice in this area, what exactly does the cpanel allow the website owner to do? Or put another way, we want assurance only the correct people have access to the cpanel for our website, so to quantify the risk, what could a malicious or unqualified person do to our site if they had access to the cpanel.
Dear Experts

Microsoft AD FS server installed and configured post installation this required to install the SSL certificate and complete the configuration , please help to understand if to change the certificate which is already configured for ADFS to new certificate where all the configuration changes to made, I mean how to re-configure adfs OR assign the new SSL certificate to the ADFS sever, can you please list the changes to be done and where all the changes and what all to be done please.
Dear Experts

while i am deploying the ad fs server installed and configured ssl certificate successfully but some how I misplaced the noted password for .pfx file  I have access to the server from where the CSR file is generated and later on the same server imported certificate through digicert utility but now I am in trouble lost the password for .pfx file and I require this so that same certificate to be installed on other ADFS server in the farm. please help me it is of wildcard certificate on how to recover the password I have access the orginal server from where the CSR is generated . please help
Dear Experts
We procured the wildcard certificate from Symantec and we received the certificate as *.mydomain_com_ee for this I had created CSR file from the microsoft AD FS server the server name was used digicert utility while creating CSR had to mention *  and did import the certificate and created the pfx file and while in this progress changed the prefix from *.mydomain_com to and installed the certificate and configured the adfs
Adfs configuration wizard showing up the following attached the same with more details snap image from the sever for your reference
1. The ssl certificate subject alternative names do not support host name
2. error occured during an attempt to set the SPN for the specified service account Set SPIN for the service account manually
3. Also followed
In this I am not able to understand subject alternative is it required to do this and if yes how and where to configure this subject alternative,  IS it to import one more certificate in additional to the above  and configure something like this OR  as per the SL1 like and add the records in active directory name server
Can you please help me on above 1 to 3
I have a windows 2016 server with IIS installed and i need to redirect any subfolders after root directory to the root directory. Scenario: to

Thanking you in advance for your answers.

A newbie to IIS rewrite
In the process of migrating a SBS 2011 domain to Servre 2016, Exchange and SharePoint were removed to clean up AD.  However, a short time later several SP users cried ouch that some of their data had not been moved.  By then, the backups for the server had been aged off.  SharePoint was re-installed, but it also crashed all of the web services on the server.  Certainly getting those going would be great, but after a whole lot of time and energy, we tried a different tack: created a new, fresh SBS and am attempting to attach the content database from the original server.

The obvious way to do this, I believe, would be to back up the database, create a new instance on the new SBS, and import the data.  Well, that didn't go so well.  The attempt to back up the database on the old server keeps failing.  So plan B -> copy the data base to the new SBS, attach it as content database, but of course it has no usable credentials on the new server.

Here are my questions:

1. How do I take ownership of the database with credentials from the new server?
    I looked at some of the PowerShell commands but they require -identity and I can't come up with that from IE where I am supposed to see it I think.

2. How can I get it to backup on the old server, and would import then solve the problem?
    I have no idea why I am getting an error on backing this up; the newer content database backs up just fine.

3. How can I fix the web services on the old computer?
    Well this …
How to turn off the Citrix Receiver detection and will it kick off users or cause any downtime?

Our users are constantly getting prompted to download Citrix Receiver, when they are prompted to their username/password from our Citrix StorFront Portal.  Even if they already have Citrix Receiver installed.  The web browsers that always prompt them include:
- Chrome
- FireFox
- Safari

It appears since Google Chrome has disabled NPAPI and that affects the users who access Citrix Receiver from the web and who use Chrome on Windows and Mac.   The following web site explains why that is:

In the past I remember working with a Citrix Consultant that disabled the Citrix Detection feature and that allowed everyone to no longer get prompted, no matter which browser they chose to use.  I am not sure what the consultant did exactly; but, I found on the web:
.  In StoreFront console > right-click the Store > Manage Receiver for Web > Configure > Deploy Receiver, you can turn off Receiver detection.

I have 2 questions:

Question1:  Can I disable the Citrix Receiver detection with the above instructions, in StoreFront?

Quesiton2:  Will the above mentioned changes cause any already connected user to disconnect?  

Quesiton3:  Will the StoreFront server require  some serives to be restarted before the …
I have a requirement to change the actual URLs used for better SEO.  For example, here is a current URL:

I would like to transform it using inbound/outbound edits in the web.config to:

All of the URLs are created dynamically so I need to use URL matching to achieve this.
Big Business Goals? Which KPIs Will Help You
Big Business Goals? Which KPIs Will Help You

The most successful MSPs rely on metrics – known as key performance indicators (KPIs) – for making informed decisions that help their businesses thrive, rather than just survive. This eBook provides an overview of the most important KPIs used by top MSPs.

Using IIS 7 I've created a self signed certificate. I followed the article here:

I'm trying to suppress the browser certificate mismatch warning that is displayed on the https://myDevSrv site.  The warning doesn't appear if I use the "real name" of the site  If I use the host header name myDevSrv it doesn't suppress the warning.  

When I generate the self signed certificate I don't seem to have control of who the certificate is issued to.  Just a friendly name.

Is there a way I can fix the self signed certificate to be issued to the host header name of myDevSrv?

.Net web application developed in MVC and angularJs 1.4
When hosted in production server, images are not loading. Getting error as in below screenshot. You can see no images in this site is loaded.

Below is the screenshot of request (from Chrome Developer Mode)

Response - Please note the response type is wrong as 'text/html' which might be reason. Since image is received is different format 500 error occurs

The following are verified
1. In IIS, MIME types is having png

2. Handler Mapping is having StaticFile

Here the is IIS serves back image in html format . So in IIS what is missing ?

I am on a project which requires me to make modes to apps
which have asp directive:

 <!--#include virtual="/global/inc/footer.aspx"-->

on multiple pages.

We can only use IIS express in development therefore I get error:

Parser Error
  Description: An error occurred during the parsing of a resource required to service this request. Please review the following specific parse error details and modify your source file appropriately.

 Parser Error Message: Could not find a part of the path 'C:\Fraud-Tip-Form\Fraud-Tip-Form\global\inc\footer.aspx'.

Source Error:

Line 332:                    <tr>
Line 333:                        <td>
Line 334:                            <!--#include virtual="/global/inc/footer.aspx"-->
Line 335:                        </td>
Line 336:                    </tr>

 Source File:  /index.aspx    Line:  334
Is there a way around using IIS Express.  We are prohibited from using IIS for testing.
Currently, I am just deleting the include directive for testing.
Since installing multiple windows updates on an SBS 20008 server  the default company web is unavailable as users are presented with the page HTTP 404 page not found, i have gone through various troubleshooting steps including IIS reset but still unable to resolve.

Any ideas?
Hi!  I inherited a classic ASP site in 2012r2 running IIS 6.2.  I turned on "Detailed Errors" but all i get is:

An error occurred on the server when processing the URL. Please contact the system administrator.
If you are the system administrator please click here to find out more about this error.

The "here" is just a link to MS KB Page "Classic ASP Not Installed by Default on IIS 7.0 and above" which seems inapplicable to IIS 6.2 and most of the ASP runs fine so all the correct features are installed.  The last time I worked with classic ASP (LOOOooong ago) I configured IIS to serve detailed errors and I got a stack dump and what line of what ASP page the error was on.  I think this page error page was created by my predecessor, but I don't know how to get rid of it and get the detailed errors back.

I need the detailed errors to debug some issues on this unfamiliar site.

Is someone expert enough at old stuff to have a clue how I might turn the full error detail display back on?
I have an intranet site that uses windows authentication. The site is hosted on an IIS server running windows server 2008 t2

I want users from one of my trusted windows domains to be able to login but it will only allow users from the domain the IIS server is on  to authenticate.

Is there a setting in IIS or webconfig I need to adjust?


Microsoft IIS Web Server





IIS is Internet Information Services, the web server included with Windows Server operating systems. All current versions are built on a modular architecture; modules can be added or removed individually so that those required for specific functionality are installed. The full installation of IIS includes HTTP, security, content, compression, caching, logging and diagnostics.