This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
Internet Information Services (IIS) 6.0 Web server for Windows Server 2003Using IIS, you can publish Web pages and deploy scalable
and reliable Web sitesOptionally installed components
Background Intelligent Transfer Service (BITS) server extensionCommon IIS program filesFile Transfer Protocol ServiceFrontPage 2002 Server Extensions Internet Information Services Manager Internet PrintingNNTP ServiceSMTP ServiceWorld Wide Web Publishing Service
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
The IIS Admin Service (also referred to as the IIS metabase) is the parent process for all IIS servicesWhen you stop the IIS Admin Service, all other services
are also stopped IIS Admin also supplies the interface that is used to
administer IIS and all of its components In IIS 6.0, the FTP, NNTP, and SMPT services as well as
the IIS Admin service run in Inetinfo.exe, while the WWW service is hosted by the service host (Svchost.exe)
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
Features Automatic restart: Will automatically restart in the event of a
system failure or when a Web application becomes unavailable Easy access to Web sites: Each Web site has a unique socket
that consists of an IP address and a port number to identify it Scalability: You can assign different ports, IP addresses, or host
header names to each Web site Bandwidth management: The network or Internet connection
used by a Web server is generally also used by multiple services running on the server such as an e-mail service
Reliability: The newly designed request-processing architecture in IIS 6.0 allows Web-based applications to run in an environment in which they are protected from the malfunctions of other applications
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
Figure 15-37 The Performance tab in the Default Web Site Properties dialog box
(Skill 6)
Used to limit the bandwidth used by IIS; if the bandwidth approaches or exceeds this limit, bandwidth throttling delays or ejects IIS service requests until more bandwidth becomes available
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
New accounts The IUSR_<server_name> account is the account used for Anonymous
access to the IIS server The IWAM_<server_name> account is the user account used to start
out-of-process applications The IIS_WPG group account is the worker process group
New services (depending on components installed) FTP Publishing service Network News Transfer Protocol service Simple Mail Transfer Protocol service World Wide Web Publishing service
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
Figure 15-45 The Web Site tab
(Skill 8)
By default, the Enable Logging check box and W3C Extended Log File Format are selected; this includes logging for the Time Taken, Client IP Address, Method, URI Stem, and HTTP Status fields
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
Figure 15-46 The Performance tab
(Skill 8)
You can limit the number of connections your IIS server will accept in order to conserve bandwidth and memory and to protect your Web server from overload attacks
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
Figure 15-57 Setting Execute permissions
(Skill 9)
Use if the directory has no executable files so the server will not run scripts or executable files in the directory
Use when other types of executable files can run on the server; the types of applications that can be run will not be limited to the Application Mappings list as they are for the Scripts only permission
Use if only scripts such as .asp files can run on the server; the server will be able to execute only the script types you have defined
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
Figure 15-58 The Application Configuration dialog box
(Skill 9)
When you use the Scripts only Execute permission, the server will be able to execute only those script types you have defined on the Application Mappings list
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
Certificates In IIS, digital identification files called certificates can be
used to authenticate both the client and the serverYou use the Web Server Certificate Wizard to request
certificates, apply certificates, and to remove them from a Web site
Client certificates: Optionally, part of the SSL Handshake Protocol can include client authentication to the server to validate users who are asking for data from your Web site
Client Certificate mapping: Another method is to map client certificates to Windows user accounts on the Web server
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
Figure 15-64 The Secure Communications dialog box
(Skill 9)
This is the Windows Server 2003 default for SSL secure communication sessions; users must have a browser that supports a 128-bit session key in order to create an encrypted channel with your server
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
When you are running IIS 6.0 in worker process isolation mode, you can group Web applications into application pools
You can assign any Web directory or virtual directory to an application pool Improves the efficiency of your IIS server Ensures that other Web applications will not have their service
interrupted when the applications in the new application pool stop
Guidelines for creating application pools Create an application pool for each Web site Configure a user account (process identity) for each application
pool Create a unique application pool for applications that you want to
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
IIS 6.0 has two modes Worker process isolation mode
The default (and preferred) mode for IIS 6.0Capable of separating applications into isolated pools Identifies unhealthy processes, resources that are being
overtaxed, and memory leaks IIS 5.0 isolation mode
Should be used if you are running legacy Web applications that may not be compatible with worker process isolation mode
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
Figure 15-81 Running the WWW service in IIS 5.0 isolation mode
(Skill 12)
IIS 6.0 runs in one of two modes: Worker process isolation mode or IIS 5.0 isolation mode, which provides backward compatibility with older applications
Exam 70-290 Managing and Maintaining a Microsoft® Windows® Server 2003 Environment
Lesson 15: Configuring a Windows Server 2003 Application Server
IIS problemsApplications are denied access to resourcesUsers request dynamic content and receive error 404Users request static content and receive error 404The application session state is dropped by worker
process recyclingClients receive error 503 (Service Unavailable message)