1 / 50

Managing Internet Information Services 6.0

Managing Internet Information Services 6.0. Microsoft Corporation. What we will cover:. New IIS 6.0 architecture IIS 6.0 processing components Managing Web Sites Managing FTP Sites FTP User isolation modes XML Metabase structure Managing the XML Metabase. Prerequisite Knowledge.

hedy
Download Presentation

Managing Internet Information Services 6.0

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Managing Internet Information Services 6.0 Microsoft Corporation

  2. What we will cover: • New IIS 6.0 architecture • IIS 6.0 processing components • Managing Web Sites • Managing FTP Sites • FTP User isolation modes • XML Metabase structure • Managing the XML Metabase

  3. Prerequisite Knowledge • Experience administering IIS 4.0 or 5.0 • Experience support Web sites and Web applications • Familiarity with the Windows 2000/2003 user interface Level 200

  4. Agenda • IIS 6.0 Architecture • Managing Web Sites • Managing FTP Sites • Managing the XML Metabase

  5. IIS 6.0 ArchitectureIIS 6.0 Internals • Inetinfo.exe • Hosts Only Metabase + FTP/SMTP/NNTP • HTTP.SYS • Kernel-mode HTTP Listener/Responder • Replaces use of Winsock for IIS • W3SVC • Manages worker processes • Worker Processes • Process Web requests

  6. IIS 6.0 ArchitectureHTTP.SYS • Kernel-mode device driver • Receives HTTP requests • Routes requests to worker processes • Sends HTTP Responses • Does not process the requests! • Performs other services

  7. IIS 6.0 ArchitectureWorker Processes • User-mode applications • Process named W3WP.EXE • Role is to process requests • Return static pages • Invoke ISAPI extensions • Run CGI handlers • Run application code • Uses HTTP.SYS for Send/Receive • Managed by the W3SVC

  8. IIS 6.0 ArchitectureWeb Administration Service (W3SVC) • Manages worker processes • At initialization time: • Constructs HTTP.SYS namespace routing table • Starts worker processes • When first request is received by HTTP.SYS • Manages worker processes • Monitors worker process health • Starts/stops, recycles etc. • Does not process requests

  9. INETINFO.exe W3SVC App Pool App Pool App Pool App Pool App Pool metabase W3WP.exe W3WP.exe W3WP.exe W3WP.exe W3WP.exe Configuration Manager Single App Single App Single App Single App Multiple Apps Application Pool Manager ftp, smtp, nntp ISAPI Ext ISAPI Ext ISAPI Ext ISAPI Ext ISAPI Ext ISAPI Filters ISAPI Filters ISAPI Filters ISAPI Filters ISAPI Filters IIS 6.0 ArchitectureArchitecture Graphic Administration Monitoring Web Publishing User mode Kernel mode HTTP.SYS Response Cache Listener Sender

  10. IIS 6.0 ArchitectureApplication Protection Architecture • No more application protection modes • In-process, out-of-process, pooled • Application pools are used to isolate apps • IIS 6.0 supports multiple application pools • Worker processes are assigned to application pools • Default is one worker process per pool • You may configure more

  11. IIS 6.0 ArchitectureEvolution of Application Protection

  12. IIS 6.0 ArchitectureApplication Pool Flexibility • Create as many pools as you like • Configure pools however you wish • To isolate a site or application • Run an app in a pool by itself • To create application pools • Assign multiple apps to a pool

  13. Recycle after: • X minutes active • After X requests • At specific times IIS 6.0 ArchitectureApplication Pool Recycling Recycle after specified amount of memory used Control memory leaks and heap corruption

  14. IIS 6.0 ArchitectureHealth Monitoring Enable pinging and set the interval Enable RFP and set the threshold Limit startup time Limit shutdown time

  15. IIS 6.0 ArchitectureApplication Pool Recommendations • Put critical sites/apps in their own pool • Pool non-critical, well-behaved sites and apps where feasible • Conserves server resources • Sites/apps from a single or customer • Create a “Timeout" application pool • Configure aggressive recycling settings • Put troublesome sites/apps into the Timeout pool

  16. IIS 6.0 ArchitectureIIS Isolation Modes • IIS 6.0 supports two process isolation modes • Worker Process Isolation Mode • Preferred Mode for IIS 6.0 • IIS 5.0 Isolation Mode • Provides backward compatibility for Web applications • Very similar to IIS 5.0 • Each request must traverse Inetinfo.exe • Does not have Application Pools or Recycling

  17. IIS 6.0 ArchitectureIsolation Modes Compared

  18. IIS 6.0 ArchitectureIsolation Mode Defaults • Defaults are different based on install • New Install: Worker Process • Upgrade from IIS 4.0 or 5.0: IIS 5.0 mode • Upgrade from IIS 6.0: Mode is preserved • Upgrade recommendations: • Setup a new computer running IIS 6.0 in worker process isolation mode • Test applications on new IIS 6.0 computer • Migrate applications to new server after testing is complete

  19. IIS 6.0 ArchitectureSecurity • More secure installation by default • IIS isn’t installed by default • IIS is locked down by default • Can only serve static pages unless configured • Web Service Extensions • Allow or disallow extensions and cgi’s • Permissions enforcement • Same as IIS 5.0

  20. Demonstration 1IIS 6.0 ArchitectureConfigure Application PoolsView RecyclingView Web Service Extensions

  21. Agenda • IIS 6.0 Architecture • Managing Web Sites • Managing FTP Sites • Managing the XML Metabase

  22. Managing Web SitesWeb Publishing in IIS 6.0 • Web Publishing are very similar to IIS 5.0 • Same tabs, and configuration options • Master properties pages have moved • Web Sites object • Biggest changes are: • Flexibility provided by application pools • Modular Installation • NAS support • FPSE 2002 support

  23. Managing Web SitesModular Installation • Many familiar services and component are not installed by default in Windows Server 2003 • IIS and FrontPage Server Extensions • Installing IIS • Configure Your Server Wizard • Add/Remove programs • Adding application support in IIS • Enable through Web Service Extensions

  24. Managing Web SitesNAS Configuration

  25. Demonstration 2Managing Web SitesCreating Web SitesConfiguring Web SitesVerifying Application Pool IDs

  26. Agenda • IIS 6.0 Architecture • Managing Web Sites • Managing FTP Sites • Managing the XML Metabase

  27. Managing FTP SitesFTP Services in IIS 6.0 • FTP basically the same was in IIS 5.0 • One big change– FTP isolation modes • Issue with previous FTP versions: • Users could navigate up the folder tree • Lockdown required granular permissions • FTP Isolation modes • Make user’s home folder appear as root • Prevents navigation up the directory tree • Makes permissions assignments much easier

  28. Managing FTP SitesNo Isolation • No isolation • Configured at FTP site creation • Metabase: UserIsolationMode=“0” • Users can navigate to all folders • Can be secured with NTFS permissions • Uses • Shared download/upload sites • Non-secure Intranets

  29. Managing FTP SitesIsolate Users Mode • Isolated by login account name • Metabase: UserIsolationMode=“1” • User account matched to folder name • All folders are under single FTP root folder • Subfolders required based on account origin • Examples • D:\FTPRoot\localuser\joe for the local account “joe” • D:\FTPRoot\MyDom\amy is for the “Amy” account from the domain named “MyDom” • User’s folder becomes FTP Root

  30. Managing FTP SitesActive Directory Isolation Mode • Users are directed to home folder listed on Active Directory user account • Metabase: UserIsolationMode=“2” • Uses Active Directory account information • Home directory on profile tab • UNC path must be accessible • Users home directory becomes FTP Root • Additional steps are required • Set FTProot and FTPdir account properties • Useful in corporate intranets

  31. Demonstration 3Managing FTP SitesFTP Site PropertiesFTP User Isolation Mode

  32. Agenda • IIS 6.0 Architecture • Managing Web Sites • Managing FTP Sites • Managing the XML Metabase

  33. Managing the XML MetabaseEvolution of the IIS Metabase • Metabase contains IIS configuration • Issues with IIS 4.0 and 5.0 Metabase: • Proprietary format • Difficult to manage • IIS 6.0 metabase: • XML formatted plain text • Easy to read and edit with text editors • Metabase files: • MBSchema.xml and Metabase.xml

  34. Managing the XML MetabaseXML Structure • Element: A logical unit of information • Surrounded by <element name> and </element name> tags • Example: <IISWebService>…</IISWebService> • Attributes • Name/value pairs • Provides more information about element • Attributes are IIS configuration parameters • Example: AnonymousUserName=“IUSR_SRV1” • An Attribute of <IISWebService> element

  35. Managing the XML MetabaseAdministering the Metabase • Edit with text editors and common tools • Easier to diagnose metabase corruption • Extend metabase schema with XML • Supports edit while running • Changes take effect immediately • Make bulk changes • ADSI and WMI scripting providers • You can use your old scripts

  36. Managing the XML MetabaseMetabase History • Automatic configuration rollback • If metabase is written to disk: • A copy written to the history folder • Each version is marked with a unique number • Easy to restore configuration • Server object | All Tasks | Backup/Restore Configuration • Makes it easy to test and roll-back • Safely test applications

  37. Managing the XML MetabaseTemplate Configuration • You can save IIS configuration to a file • Save from any node • Import templates to create IIS objects • Quickly add standardized Web/FTP sites • Export entire server configuration • Make machine independent backups • Clone existing server configurations

  38. Demonstration 4Managing the XML MetabaseMetabase FormatEditing the MetabaseTemplate Configuration

  39. Session Summary • IIS 6.0 is complete rearchitected • Application pools isolate applications • Application pools are highly configurable • Web sites are assigned to application pools • FTP support user isolation • The Metabase is XML formatted text • You can edit the Metabase while IIS is running

  40. For More Information… • Main TechNet Web site at www.microsoft.com/technet • This session’s resource page www.microsoft.com/technet/tnt1-84

  41. For More Information… • IIS 6.0 Technical Overivew • www.microsoft.com/windowsserver2003/techinfo/overview/iis.mspx • What’s new in IIS 6.0 • www.microsoft.com/windowsserver2003/evaluation/overview/technologies/iis.mspx

  42. MS PressInside information for IT Professionals To find the latest IT Professional related titles visit www.microsoft.com/mspress/it/

  43. 3rd Party PublicationsSupplementary publications for IT Pro’s These books can be found and purchased at all good book stores and on-line retailers

  44. Become a Microsoft Certified Systems Administrator (MCSA) • What is the MCSA certification? • For professionals who implement, manage, and troubleshoot existing network and system environments based on Microsoft Windows 2000 platforms • How do I become an MCSA on Microsoft Windows 2000? • Pass 3 core exams • Pass 1 elective exam or 2 CompTIA certifications • Where do I get more information? • For more information about certification requirements, exams, and training options, visit www.microsoft.com/mcsa

  45. Become A Microsoft Certified Systems Engineer (MCSE) • What is the MCSE certification? • Premier certification for professionals who analyze the business requirements and design and implement the infrastructure for business solutions based on the Microsoft server software. • How do I become an MCSE on Microsoft Windows 2000? • Pass 4 core exams • Pass 1 design exam • Pass 2 elective exams from a comprehensive list • Where do I get more information? • For more information about certification requirements, exams, and training options, visit www.microsoft.com/mcse

  46. Assess your ReadinessMicrosoft Skills Assessment What is Microsoft Skills Assessment? • Self-study learning tool to evaluate readiness for product and technology solutions, instead of job-roles (certification) • Windows Server 2003 assessments available now, .NET Developer late May, Exchange Server 2003 in mid-2003 • Free, online, unproctored, and available to anyone • Answers, “Am I ready?” • Determines skills gaps, provides learning plans with Microsoft Official Curriculum courses, plus more Microsoft learning content suggestions such as TechNet resources • Post your High Score to see how you stack up • visithttp://www.microsoft.com/assessment

  47. What is TechNet? • Put the right answers at your fingertips • TechNet is the comprehensive collection of resources to help IT implementers plan, deploy and manage Microsoft products successfully TechNet Subscription • Monthly updates delivered on DVD or CD • The definitive resource to help you evaluate, deploy and maintain Microsoft products TechNet Web Site • Accessible at www.microsoft.com/technet • Online resources and community • Subscriber-only Online Services TechNet Flash • Bi-weekly e-newsletter • Security updates, new resources, and special offers TechNet Events and Web Casts • Briefings on the latest Microsoft products and technologies • Hands-on, “how to” information TechNet Communities • User Groups • Managed Newsgroups

  48. The TechNet Subscription TechNet is a monthly subscription service that provides the tools, software, and resources that an IT professional needs to efficiently plan, deploy, manage, and support Microsoft products. A TechNet Subscription is proven to save you or your company time and money. If you’re an IT professional working in technical support, network or systems administration, or technology architecture, TechNet was created for you. “You have everything you need to solve problems in one place” – Wayne Brown, VP Information Technology, Heald College

  49. Where Can I Get TechNet? • Visit TechNet Online atwww.microsoft.com/technet • Register for the TechNet Flash www.microsoft.com/technet/usingtn/register/flash.asp • Join the TechNet Online forum at www.microsoft.com/technet/itcommunity • Become a TechNet Subscriber at www.microsoft.com/technet/buynow/subscribe • Attend More TechNet Events or view on-linewww.microsoft.com/technet/tcevents/itevents

More Related