Internet Information Services (IIS) allows a Windows server to act as a web server and provide services for websites and other web applications. Using the IIS Manager, you can provision websites and even deploy FTP Server sites. IIS supports several different authentication methods, and you should be careful to choose the method that provides the greatest level of security without overburdening your users. Anonymous access is provided for public access website hosting. Encryption is supported and requires the use of SSL, which itself requires a certificate to provision encryption keys. A certificate may be acquired through internal PKIs, third-party certificate providers, or through the use of a self-signed certificate.
- Create a website that maps to port 8060 on the server.
- Create a website that maps to port 80, but uses the hostname intranet.training.local.
- Create an FTP site that points to the directory C:\ftpanon.
- Create an FTP site that points to the directory C:\ftpsecure and requires user authentication.
Answers for Exercises
- Create the website based on the instructions provided earlier in the chapter.
- Create the website based on the instructions for using host headers provided earlier in the chapter. Be sure to create the DNS host record too.
- Create the FTP site based on the instructions provided earlier in the chapter.
- Create the FTP site based on the instructions provided earlier in the chapter. At step 7, indicate that specific users can access the site and define those users.
- 1. What form of authentication, supported by IIS, uses pre-shared secret keys that are not sent across the network in any form?
- A. Basic
- B. Forms
- C. Digest
- D. Anonymous
- 2. True or false: IIS 7.5 first shipped with Windows Vista and Server 2008.
- 3. If a web page has six images and one HTML code file named sales.html, how many HTTP request operations are required to download the web page?
- A. 1
- B. 2
- C. 6
- D. 7
- 4. Name a characteristic of a web service.
- 5. What two types of sites are created by right-clicking on the Sites container in IIS Manager?
- A. FTP
- B. SharePoint
- C. Joomla!
- D. Web
- 6. Define a protocol listener in IIS.
- 7. Define SSL.
- 8. How are FTP communications transmitted by default?
- A. With AES 128-bit encryption
- B. With AES 512-bit encryption
- C. As cleartext
- D. With 64-bit WEP encryption
- 9. Which one of the following is certain to occur if you use a self-signed certificate for an IIS website?
- A. Public users will receive a warning that the certificate could not be verified.
- B. The encryption will not work properly.
- C. The encryption will be cracked in less than 90 minutes.
- D. The authentication will fail.
- 10. True or false: Self-signed certificates are not supported in IIS.
Answers for Review Questions
- 1. C Digest authentication is based on secret keys. While Basic authentication sends the password across the network in an easily decodable form, digest authentication requires that the secret keys and passwords not be sent across the network in any form.
- 2. False IIS 7.0 shipped with Windows Vista and Server 2008. IIS 7.5 shipped with Windows 7 and Windows Server 2008 R2.
- 3. D Seven requests will be required: one request for each of the images and one request for the HTML code file.
- 4. Loosely coupled, extensible, or interoperable. Web services are interoperable in that they can communicate with other web services. They are extensible in that they can be improved upon by adding new code or modules. They are loosely coupled in that they are not required to be fully aware of the inner workings of the other web services. Any one of these three would be a valid response.
- 5. A, D You can create a website or an FTP site by right-clicking on the Sites container in the IIS Manager. SharePoint sites are created from within the specialized SharePoint administration interface called Central Administration. Joomla! sites can be created in IIS, but it requires installing the Joomla! software. Joomla! is an open source content management system.
- 6. A service that receives incoming requests and sends responses to those requests within Internet Information Services. The default protocol listener is HTTP.sys; it is used for standard website requests and responses.
- 7. A protocol that provides encryption for HTTP communications between a web client and a web server. Typically, it is identified by the HTTPS protocol designator in the URL of the website.
- 8. C FTP uses plaintext transfers, which means that the data is unencrypted. IIS supports the use of SSL with FTP to provide the encryption if desired.
- 9. A When you use a self-signed certificate, you have no way to force public users to install the certificate and trust your server. They will receive a warning that the certificate could not be validated.
- 10. False You can create a self-signed certificate from within the IIS Manager and use it for SSL services from the web server.