David Lowe Group Product Manager Microsoft Corporation WSV205.

Extend Your Web Server: What's New in IIS and the Microsoft Web Platform

David LoweGroup Product ManagerMicrosoft CorporationWSV205

Agenda

IIS and the Microsoft Web PlatformIIS 7.5 Enhancements in R2IIS and ASP.NET on Server Core in R2Remotely Managing IIS in R2IIS Extensions for Development and Deployment

Built to work with YOU in mind

The Microsoft Web Platform is the software of choice when building web solutions or applications for your business, large or small. Whether you’re looking to

create your company’s global web presence, building applications for your small business, or just getting

started on the web, Microsoft has the solutions for you. Trusted by Fortune 500’s, used by millions of individuals.

The Microsoft Web Platform

Tools Servers Technologies

Applications

Design and development integration for pre- packaged Open Source applications that run on top of the Microsoft Web Platform including:

The Microsoft Web Platform is a powerful set of tools, servers, and technologies optimized for building and hosting next generation web applications and solutions. Use the Web Platform Installer to get everything up and running with a single tool.

Tools, Servers and Technologies

Web Platform Installer

Web Platform Installer V2.0Demo

More Reliable More Control More Secure More Choice

Increased availability through dynamic request handling,

improved caching, and powerful troubleshooting tools

Simplified, distributed management through set of

customizable administration tools with easier application

deployment for developers

Improved security and server protection through reduced server footprint, enhanced

publishing, and request filtering capabilities

Flexible platform with enhanced support for multiple application

development platforms and media content delivery

Scalable Web Infrastructure

Dynamic Caching & Compression

Powerful Diagnostic Tools

Centralized Web Management

Delegated Remote Management

Easy Application & Server Deployment

Enhanced Server Protection

Secure Content Publishing

Improved Access Protection

Included ASP.NET & PHP Support

Modular & Extensible Web Server

Integrated Media Platform

IIS Extensions

Enhancing IIS Feature Set

IIS 7.0 Platform IIS 7.5 Platform

IIS Extensions

Extensions Add Further Functionality

Extensions Add Further Functionality

Some ExtensionsIntegrated

IIS 7.5 & New Features in R2

ASP.NET on Server Core

PowerShell Module & Cmdlets

Integrated FTP and WebDAV

Integrated Admin Pack Modules

Configuration Logging & Tracing

Best Practice Analyzer

.NET in Server Core in R2

.NET Framework in Server CoreSubset of .NET 2.0Subset of .NET 3.0

Windows Communication Framework (WCF)Windows Workflow Framework (WF)

Subset of .NET 3.5WF additions from 3.5LINQ

Subset of ASP.NET support for IISWindows PowerShellWoW64 as an optional feature

Not installed by default

Windows Server 2008 R2 Server Core Architecture

Server Core, Server Roles and Optional Features

Server CoreSecurity, TCP/IP, File Systems, RPC,plus other Core Server Sub-Systems

DNS DHCP FileAD

ServerWith .NetFx, Shell,

Tools, etc.

TS NAS ADFS WDS Etc…

Server, Server Roles (for example only)

ADLDS

MediaServer IIS 7 Hyper-V

Print

ASP.NETPS.NET3/3.5

.NET2.0

WoW64 GUI, Shell, IE, Media, Mail, Etc.

CLR 2.0

ASP.NETWPF

.NET Framework

LINQ

CLR 3.0Additions

CLR 3.5Additions

WPFWCF WF

In Server Core

.NET 2.0 in Server Core

Subset of .NET 2.0 on Server Core.NET functionality aligns with functionality in Server CoreInstalled by default in current builds

How to install if not already installedFor 64-bit applications (R2 is 64-bit only)Start /w ocsetup NetFx2-ServerCore

If 32-bit support is needed:Start /w ocsetup ServerCore-WOW64Start /w ocsetup NetFx2-ServerCore-WOW64

.NET 3.0 / 3.5 in Server Core

.NET 3.0 functionalityNo WPF in Server Core

.NET 3.5 functionalityLINQ

.NET 3.0 and 3.5 installed with a single packageFor 64-bit applicationsStart /w ocsetup NetFx3-ServerCore

If 32-bit support is needed:Start /w ocsetup ServerCore-WOW64Start /w ocsetup NetFx3-ServerCore-WOW64

ASP.NET on Server Core in R2

Included with IIS, with the same package as full Server: IIS-ASPNETLimitations

System.Web.Mail classes will fail because CDOSYS not available

Use System.Net.Mail insteadWeb Application Tool (WAT) not available

Install ASP.NET on Server Core

start /w ocsetup IIS-WebServerRole;IIS-WebServer

start /w ocsetup IIS-CommonHttpFeatures;IIS-DefaultDocument;IIS-Security;IIS-RequestFiltering

start /w ocsetup IIS-ApplicationDevelopment;IIS-ISAPIFilter;IIS-ISAPIExtensions;IIS-NetFxExtensibility

start /w ocsetup IIS-ASPNET

Install ASP.NET on Server Core(New DISM Command)

start /w ocsetup IIS-WebServerRole;IIS-WebServer

start /w ocsetup IIS-CommonHttpFeatures;IIS-DefaultDocument;IIS-Security;IIS-RequestFiltering

start /w ocsetup IIS-ApplicationDevelopment;IIS-ISAPIFilter;IIS-ISAPIExtensions;IIS-NetFxExtensibility

dism /online /enable-feature /featurename: IIS-ASPNET

ASP.NET on Server CoreDemo

Remote Management of IIS

Install the IIS Management Servicedism /online /enable-feature /featurename:IIS-ManagementService

Enable Remote ManagementHKLM\Software\Microsoft\WebManagement\ServerSet EnableRemoteManagement to 1

Start the Management Servicenet start wmsvc

Service is not set to start automaticallysc config wmsvc start= auto

Remote Management of Server CoreDemo

IIS 7.0 / 7.5 Extensions

New functionality for IIS enabled by Extensibility FrameworkNew modules for IIS Manager built using public Microsoft.Web.Administration APIsIIS team developing key Extensions for IIS

Core runtimeWeb application lifecycleMedia integration

IIS Extensions AvailableExtension Beta RC RTWIIS FTP Service 7.5 (for IIS 7.0) IIS WebDAV 7.5 (for IIS 7.0) IIS Manager for Remote Administration IIS Administration Pack (for IIS 7.0) Windows PowerShell Snap-In for IIS 7.0 IIS URL Rewriter UrlScan 3.1 (for IIS 5.1 / IIS 6.0) IIS Media Services 2.0) IIS Dynamic IP Restrictions IIS Application Request Routing IIS Web Deployment Tool IIS Database Manager IIS Advanced Logging Web Platform Installer (2.0) (1.0)

IIS Extensions Integrated in R2

Windows PowerShell Snap-In for IISImplemented as Web Administration Module

FTP PublishingWebDAV PublishingIIS Administration Pack Modules

FastCGI ConfigurationRequest Filtering ConfigurationConfiguration EditorASP.NET Authorization and Custom Errors

BenefitsPublish securely and easily from IIS Manager via Internet standardsSimplify hosting through integrated Web and FTP site managementImprove security and auditing through new authentication providers and enhanced logging

FeaturesIntegrated with IIS 7.0 ManagerSupport for FTP over SSLHost FTP and Web content from same site by adding FTP binding Support for hosting multiple FTP sites on same IP addressImproved virtual directory supportImproved user isolation through per-user virtual directoriesImproved logging support Detailed error messages for end users and event tracing for server-side troubleshooting

FTP Service 7.5Enables Web authors to publish content more easily and securely, and offers improved integration and management for hosters and administrators

BenefitsPublish securely and easily from IIS 7.0 ManagerConfigure publishing on a per-site levelImprove security and auditing through custom authorization support

FeaturesIntegrated with IIS 7.0 ManagerSupport for HTTP over SSLConfiguration can be done at the site-level rather than at the server-level as in IIS 6.0Per-URL authoring rules, allowing administrators to specify custom WebDAV security settings on a per-URL basis

WebDAV 7.5Enables Web authors to publish content more easily and securely, and offers better integration, configuration and authorization features

BenefitsManage your configuration files with Configuration EditorView key statistics about your website with IIS ReportsManage existing features with IIS Manager UI Extensions

FeaturesGenerate code to automate tasksScoped searches of the configuration systemView key statistics about websitesDefault reports for administrators or delegated managementCreate custom reportsFastCGI module allows management of FastCGI settingsASP.NET modules allow management of authorization and custom errors settingsHTTP Request Filtering module

Administration Pack ModulesA collection of IIS modules that enhance the functionality of IIS Manager to help administer IIS Web servers

BenefitsSimplify the administration of your Web site by scripting tasksExecute repetitive administrative tasks across serversImprove your decision making by consolidating metrics from your servers in real-time

FeaturesSeamless integration into the PowerShell environmentLow-level and task-based cmdlets specific to IIS that allows to:

Add and change configuration properties of Web-Sites, Web Applications, Virtual Directories and Application PoolsExecute advanced configuration tasksQuery run-time data

PowerShell Web Administration ModuleAllows IT professionals and hosters to easily automate complex IIS 7.5 administrative tasks effectively increasing the productivity of administrators

PowerShell Web Administration

To use Web Administration moduleimport-module WebAdministrationcd IIS:\

IIS cmdletsHigh-level and low-level cmdlets for administration and modifying configurationBest Practice Analyzer cmdlets

Start /w ocsetup BestPractices-PSH-Cmdletsimport-module BestPractices

Cmdlets are:get-bparesultinvoke-bpamodelset-bparesult

PowerShell Scenarios for IIS(1)Add / remove / change:

ApplicationsVirtual directoriesSitesApplication pools

Add sites based on templateCopy config and content of existing site / vdir to other site / vdirConfigure SSLFind log file directory for siteChange authentication settings ofsite / app / vdir

Set IP restrictions on a siteRecycle:

Application poolsIIS (IISRESET)

Backup IIS configurationActivate sites (start/stop)Add bindings to existing web-siteConvert folders to applications / vdirsChange AppPool account identities and passwordsUnload web appsConfigure redirection

PowerShell Scenarios for IIS(2)Add / remove / reorder default documentChange port number / IP address of a site bindingChange physical path of a siteEdit list of allowed Web Service ExtensionsAdd new custom error pageRegister new:

ISAPI filter / extensionNative module / handlerManaged module / handler (integrated pipeline/ISAPI mode)

Add / remove / change MIME MapMonitor:

Site statusExecuting requests

Test site is up and runningFind all stopped sitesFind configuration setting Move log filesCreate new AppPool with recycling settingsLock section or elementChange Application Pool of an application

IIS Extensions on Server Core

IIS-NetFxExtensibilityEnables hosting of .NET framework managed module extensions

IIS-FTPExtensibilitySupports FTP feature extensions, such as custom providers

IIS-WebDAVWebDAV extension module

WCF-HTTP-ActivationProcess activation via HTTP support

BenefitsSynchronize your server farm efficientlyPackage, archive and deploy Web applications more easilyMigrate Web applications between IIS 6.0 and IIS 7.0 with ease

FeaturesIntegrated with IIS Manager and Visual Studio 2010Ability to migrate the entire Web server, Web application or Web siteSynchronizes only changed dataWarns of missing dependencies during synchronizationAutomatically gathers content, configuration, certificates, Registry Keys, ASP.NET configurationPackages Web app or entire siteSupports both live servers and zipped packages as source or target appsAdministrative privileges are not required to deploy Web applications

Web Deployment ToolSimplify the migration, management and deployment of IIS Web Servers, Web applications and Web sites. It can be used to package, synchronize IIS sites including content, configuration certificates and databases.

Web Deployment Tool on Server Coredemo

Additional IIS Enhancements

IIS Application Auto-StartCLR Settings per Application PoolConfiguration Logging and TracingNew Application Pool Identities and Managed Service Accounts

IIS Application Auto-StartIIS process model is request drivenTo instantiate critical infrastructure and be more responsive certain applications need to be pre-loadedApplication preLoad feature in IIS 7.5 allows applications to automatically start without a requestAdd the following to applicationHost.config file:

<application path="/myapp" preloadEnabled="true">

<virtualDirectory path="/" physicalPath="c:\inetpub\myapp"/></application>

Add the following to web.config file:<preload>

<add value="default.aspx"/></preload>

CLR Settings per App PoolASP.NET settings stored in global ASPNET.configCan now create custom ASPNET.config files

Specify location in applicationHost.configLocal settings honored at runtime – can be UNC pathE.g. set maximum number of threads, maximum number of requests or garbage collection settings

Add the following in applicationHost.config file:<applicationPools>

<add name=”DefaultAppPool” CLRConfigFile=”c:\myConfig\CLRConfigFile.txt” />

<add name="Classic .NET AppPool“ managedPipelineMode="Classic" /><applicationPools>

Configuration Logging Tracing

IIS 7.0 does not include any built-in tracing mechanism for configuration changesIIS in Windows Server 2008 R2 will provide:

Read / write auditing of configuration system Writes to configuration:

Logging of Write failuresLogging of Write successes

Read from configuration:Logging of Read failuresLogging of Read successes

Logging of events unrelated to Reads / Writes

Configuration Logging Tracing

Logs kept under Applications and ServicesApplications and Services Logs > Microsoft > Windows > IIS-Configuration

Four logs:AdministrativeAnalyticDebugWriteAuditing

By default, all logging is disabled

Application Pool Identities

All application pools run as NetworkServiceEnables token kidnapping scenarios

IIS in R2 (and backported to IIS 7.0) will allow use of new “AppPool” identityIIS in R2 will also allow domain accounts for running services without management of passwords – Managed Service AccountsIdentity type in IIS in R2 will be set by default to 4 (App Pool Identity) versus 2 (Network Service) – NOT in IIS 7.0 / WS08

IIS Best Practice Analyzer

Seven criteria are checked for compliance1-7

Competitive price

Dedicated Web server

Standards-based interfaces

Supports 4 processors and 32 GB RAM (64 bit)

Web edition of Windows Server 2008 R2Will include Web Server (IIS) and DNS rolesServer Core installation supports ASP.NET

Optimized for Internet-facing Web-servingenvironments not requiring authenticationCan run Windows Media Services 2008, Windows SharePoint Services,Office SharePoint Server and SQL ServerDoes not require purchase of Client AccessLicenses (CALs) or External Connector

Summary

IIS is enhanced as IIS 7.5 in R2Mostly integration of IIS Extensions.NET on Server Core is biggest changeIIS team continues to invest in Extensions

New Online Resources at MSCOM and IIS.net

IIS 7.0 Content Articles, Walkthroughs, Blogs

Downloads, Webcasts, Forums

Customer Perspectives,Technical Resources, Links to Community Resources

question & answer

www.microsoft.com/teched

Sessions On-Demand & Community

http://microsoft.com/technet

Resources for IT Professionals

http://microsoft.com/msdn

Resources for Developers

www.microsoft.com/learningMicrosoft Certification and Training Resources

www.microsoft.com/learning

Microsoft Certification & Training Resources

Resources

Windows Server ResourcesMake sure you pick up your copy of Windows Server 2008 R2 RC from the Materials Distribution Counter

Learn More about Windows Server 2008 R2: www.microsoft.com/WindowsServer2008R2

Technical Learning Center (Orange Section): Highlighting Windows Server 2008 and R2 technologies•Over 15 booths and experts from Microsoft and our partners

Complete an evaluation on CommNet and enter to win!

© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS,

IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.