Rodney BuikeTechnology [email protected]://www.thelazyadmin.comhttp://blogs.technet.com/canitproTwitter: @rbuike
Today’s GoalsGet Windows Server 2008 R2 installed with…
IIS 7.5ASP.NETPHP
Discover what’s new in Server 2008 R2 web services.NET on Server Core R2
Learn what’s possible on the Windows platformWeb Platform InstallerRemote Management and PowerShellBest Practices
Supports 4 processors and 32 GB RAM (64 bit)Supports 4 processors and 32 GB RAM (64 bit)
Web edition of Windows Server 2008 R2Will include Web Server (IIS) and DNS rolesServer Core installation supports ASP.NET
Optimized for Internet-facing Web-servingenvironments not requiring authenticationCan run Windows Media Services 2008, Windows SharePoint Services,Office SharePoint Server and SQL ServerDoes not require purchase of Client AccessLicenses (CALs) or External Connector
IIS 7.5 & New Features in R2
ASP.NET on Server Core
PowerShell Module & Cmdlets
Integrated FTP and WebDAV
Integrated Admin Pack Modules
Configuration Logging & Tracing
Best Practice Analyzer
Enhancing IIS Feature Set
IIS 7.0 PlatformIIS 7.0 Platform IIS 7.5 PlatformIIS 7.5 Platform
Extensions Extensions Add Further Add Further FunctionalityFunctionality
Extensions Extensions Add Further Add Further FunctionalityFunctionality
FTP & FTP & WebDAV WebDAV
Integrated Integrated
IIS Extensions Available
Extension Beta RC RTWIIS FTP Service 7.5 (for IIS 7.0) IIS WebDAV 7.5 (for IIS 7.0) IIS Manager for Remote Administration IIS Administration Pack (for IIS 7.0) Windows PowerShell Snap-In for IIS 7.0 IIS URL Rewriter UrlScan 3.1 (for IIS 5.1 / IIS 6.0) IIS Media Services 2.0 IIS Dynamic IP Restrictions IIS Application Request Routing (2.0) (1.0)IIS Web Deployment Tool IIS Database Manager IIS Advanced Logging Web Platform Installer (2.0) (1.0)
.NET 2.0 in Server Core
Subset of .NET 2.0 on Server Core.NET functionality aligns with functionality in Server CoreNot installed by default in RC
How to install if not already installedFor 64-bit applications (R2 is 64-bit only)Start /w ocsetup NetFx2-ServerCore
If 32-bit support is needed:Start /w ocsetup ServerCore-WOW64Start /w ocsetup NetFx2-ServerCore-WOW64
.NET 3.x in Server Core
.NET 3.0 functionalityNo WPF in Server Core
.NET 3.5 functionalityLINQ
.NET 3.0 and 3.5 installed with a single packageFor 64-bit applicationsStart /w ocsetup NetFx3-ServerCore
If 32-bit support is needed:Start /w ocsetup ServerCore-WOW64Start /w ocsetup NetFx3-ServerCore-WOW64
Install ASP.NET on Server Core(IIS 7.0 on Server 2008 Core)
start /w ocsetup IIS-WebServerRole;IIS-WebServer
start /w ocsetup IIS-CommonHttpFeatures;IIS-DefaultDocument;IIS-Security;IIS-RequestFiltering
start /w ocsetup IIS-ApplicationDevelopment;IIS-ISAPIFilter;IIS-ISAPIExtensions;IIS-NetFxExtensibility
start /w ocsetup IIS-ASPNET
Install ASP.NET on Server Core(IIS 7.5 on Server 2008 R2 Core)
dism /online /enable-feature /featurename:IIS-WebServerRole /featurename:IIS-WebServer
dism /online /enable-feature /featurename: IIS-CommonHttpFeatures /featurename:IIS-DefaultDocument /featurename:IIS-Security /featurename:IIS-RequestFiltering
dism /online /enable-feature /featurename: IIS-ApplicationDevelopment /featurename:IIS-ISAPIFilter /featurename:IIS-ISAPIExtensions /featurename:IIS-NetFxExtensibility
dism /online /enable-feature /featurename: IIS-ASPNET
ASP.NET on Server Core
Install PHP on Server Corestart /w ocsetup IIS-WebServerRole;WAS-WindowsActivationService;WAS-ProcessModel;IIS-CGIExtract to C:\PHPCopy C:\PHP\PHP.ini.recommended to C:\PHP\PHP.iniEdit PHP.ini
Set fastcgi.impersonate = 1Set cgi.fix_pathinfo=1Set cgi.force_redirect = 0Set open_basedir to point to WWWROOTSet extension_dir to point to “./ext”Enable required PHP extensionsRun C:\PHP\PHP.exe –info to test
PHP on Server Core
Web Platform Installer
Download, install and update latest components of the Microsoft Web PlatformInstall open source .NET and PHP web applications
Install WordPress with WPI
Remote Management of IIS
Install the IIS Management Servicedism /online /enable-feature /featurename:IIS-ManagementService
Enable Remote ManagementHKLM\Software\Microsoft\WebManagement\ServerSet EnableRemoteManagement to 1
Start the Management Servicenet start wmsvc
Service is not set to start automaticallysc config wmsvc start= auto
Remote Management of Server Core
PowerShell Web Administration
To use Web Administration moduleimport-module WebAdministrationcd IIS:\
IIS cmdletsHigh-level and low-level cmdlets for administration and modifying configurationBest Practice Analyzer cmdletsStart /w ocsetup BestPractices-PSH-Cmdletsimport-module BestPractices
Cmdlets are:get-bparesultinvoke-bpamodelset-bparesult
IIS Best Practice Analyzer
Seven criteria are checked for compliance1-7
Best Practices Analyzer
BenefitsBenefitsSynchronize your server farm Synchronize your server farm efficientlyefficiently
Package, archive and deploy Web Package, archive and deploy Web applications more easilyapplications more easily
Migrate Web applications between Migrate Web applications between IIS 6.0 / 7.0 / 7.5 with easeIIS 6.0 / 7.0 / 7.5 with ease
FeaturesFeatures
Integrated with IIS Manager and Integrated with IIS Manager and Visual Studio 2010Visual Studio 2010
Ability to migrate the entire Web Ability to migrate the entire Web server, Web application or Web siteserver, Web application or Web site
Synchronizes only changed dataSynchronizes only changed data
Warns of missing dependencies Warns of missing dependencies during synchronizationduring synchronization
Automatically gathers content, Automatically gathers content, configuration, certificates, Registry configuration, certificates, Registry Keys, ASP.NET configurationKeys, ASP.NET configuration
Packages Web app or entire sitePackages Web app or entire site
Supports both live servers and zipped Supports both live servers and zipped packages as source or target appspackages as source or target apps
Administrative privileges are not Administrative privileges are not required to deploy Web applicationsrequired to deploy Web applications
Web Deployment ToolSimplify the migration, management and deployment of IIS Web Servers, Web Simplify the migration, management and deployment of IIS Web Servers, Web applications and Web sites. It can be used to package, synchronize IIS sites applications and Web sites. It can be used to package, synchronize IIS sites including content, configuration certificates and databases.including content, configuration certificates and databases.
Web Deployment Tool
Additional IIS Enhancements
IIS Application Auto-StartCLR Settings per Application PoolConfiguration Logging and TracingNew Application Pool Identities and Managed Service Accounts
Go Do’sDownload Windows Server 2008 R2 RC
microsoft.com/windowsserver2008Install IIS, ASP.NET and PHP
learn.iis.netTry the Web Platform Installer
microsoft.com/webTell us what you are doing!
Rodney BuikeTechnology [email protected]://www.thelazyadmin.comhttp://blogs.technet.com/canitpro
BenefitsBenefitsPublish securely and easily from IIS Manager via Internet standardsSimplify hosting through integrated Web and FTP site managementImprove security and auditing through new authentication providers and enhanced logging
FeaturesFeaturesIntegrated with IIS ManagerIntegrated with IIS Manager
Support for FTP over SSLSupport for FTP over SSL
Host FTP and Web content from Host FTP and Web content from same site by adding FTP binding same site by adding FTP binding
Support for hosting multiple FTP Support for hosting multiple FTP sites on same IP addresssites on same IP address
Improved virtual directory supportImproved virtual directory support
Improved user isolation through Improved user isolation through per-user virtual directoriesper-user virtual directories
Improved logging support Improved logging support
Detailed error messages for end Detailed error messages for end users and event tracing for users and event tracing for server-side troubleshootingserver-side troubleshooting
FTP Service 7.5Enables Web authors to publish content more easily and securely, and Enables Web authors to publish content more easily and securely, and offers improved integration and management for hosters and administratorsoffers improved integration and management for hosters and administrators
BenefitsBenefitsPublish securely and easily from IIS ManagerConfigure publishing on a per-site levelImprove security and auditing through custom authorization support
FeaturesFeaturesIntegrated with IIS ManagerIntegrated with IIS Manager
Support for HTTP over SSLSupport for HTTP over SSL
Configuration can be done at the Configuration can be done at the site-level rather than at the site-level rather than at the server-level as in IIS 6.0server-level as in IIS 6.0
Per-URL authoring rules, allowing Per-URL authoring rules, allowing administrators to specify custom administrators to specify custom WebDAV security settings on a WebDAV security settings on a per-URL basis per-URL basis
WebDAV 7.5Enables Web authors to publish content more easily and securely, and Enables Web authors to publish content more easily and securely, and offers better offers better integration, configuration and authorization features
BenefitsBenefitsManage your configuration files with Configuration EditorView key statistics about your website with IIS ReportsManage existing features with IIS Manager UI Extensions
FeaturesFeaturesGenerate code to automate tasksGenerate code to automate tasks
Scoped searches of the Scoped searches of the configuration systemconfiguration system
View key statistics about websitesView key statistics about websites
Default reports for administrators Default reports for administrators or delegated managementor delegated management
Create custom reportsCreate custom reports
FastCGI module allows FastCGI module allows management of FastCGI settingsmanagement of FastCGI settings
ASP.NET modules allow ASP.NET modules allow management of authorization and management of authorization and custom errors settingscustom errors settings
HTTP Request Filtering moduleHTTP Request Filtering module
Administration Pack ModulesA collection of IIS modules that enhance the functionality of IIS Manager to A collection of IIS modules that enhance the functionality of IIS Manager to help administer IIS Web servershelp administer IIS Web servers
BenefitsBenefitsSimplify the administration of your Simplify the administration of your Web site by scripting tasksWeb site by scripting tasks
Execute repetitive administrative Execute repetitive administrative tasks across serverstasks across servers
Improve your decision making by Improve your decision making by consolidating metrics from your consolidating metrics from your servers in real-timeservers in real-time
FeaturesFeaturesSeamless integration into the Seamless integration into the PowerShell environmentPowerShell environmentLow-level and task-based cmdlets Low-level and task-based cmdlets specific to IIS that allows to:specific to IIS that allows to:
Add and change configuration Add and change configuration properties of Web-Sites, Web properties of Web-Sites, Web Applications, Virtual Directories Applications, Virtual Directories and Application Poolsand Application PoolsExecute advanced configuration Execute advanced configuration taskstasksQuery run-time data Query run-time data
Windows PowerShell ModuleAllows IT professionals and hosters to easily automate complex IIS 7.5 Allows IT professionals and hosters to easily automate complex IIS 7.5 administrative tasks effectively increasing the productivity of administratorsadministrative tasks effectively increasing the productivity of administrators
PowerShell Scenarios for IIS(1)Add / remove / change:
ApplicationsVirtual directoriesSitesApplication pools
Add sites based on templateCopy config and content of existing site / vdir to other site / vdirConfigure SSLFind log file directory for siteChange authentication settings ofsite / app / vdir
Set IP restrictions on a siteRecycle:
Application poolsIIS (IISRESET)
Backup IIS configurationActivate sites (start/stop)Add bindings to existing web-siteConvert folders to applications / vdirsChange AppPool account identities and passwordsUnload web appsConfigure redirection
PowerShell Scenarios for IIS(2)Add / remove / reorder default documentChange port number / IP address of a site bindingChange physical path of a siteEdit list of allowed Web Service ExtensionsAdd new custom error pageRegister new:
ISAPI filter / extensionNative module / handlerManaged module / handler (integrated pipeline/ISAPI mode)
Add / remove / change MIME MapMonitor:
Site statusExecuting requests
Test site is up and runningFind all stopped sitesFind configuration setting Move log filesCreate new AppPool with recycling settingsLock section or elementChange Application Pool of an application
IIS Application Auto-StartIIS process model is request drivenTo instantiate critical infrastructure and be more responsive certain applications need to be pre-loadedApplication preLoad feature in IIS 7.5 allows applications to automatically start without a requestAdd the following to applicationHost.config file:
<application path="/myapp" preloadEnabled="true">
<virtualDirectory path="/" physicalPath="c:\inetpub\myapp"/></application>
Add the following to web.config file:<preload>
<add value="default.aspx"/></preload>
CLR Settings per App Pool
ASP.NET settings stored in global ASPNET.configCan now create custom ASPNET.config files
Specify location in applicationHost.configLocal settings honored at runtime – can be UNC pathE.g. set maximum number of threads, maximum number of requests or garbage collection settings
Add the following in applicationHost.config file:<applicationPools>
<add name=”DefaultAppPool” CLRConfigFile=”c:\myConfig\CLRConfigFile.txt” />
<add name="Classic .NET AppPool“ managedPipelineMode="Classic" /><applicationPools>
Configuration Logging Tracing
IIS 7.0 does not include any built-in tracing mechanism for configuration changesIIS in Windows Server 2008 R2 provides:
Read / write auditing of configuration system Logging of events unrelated to Reads / Writes
Logs kept under Applications and ServicesApplications and Services Logs > Microsoft > Windows > IIS-Configuration
Four logs:Administrative, Analytic, Debug, WriteAuditing
By default, all logging is disabled
Application Pool Identities
All application pools run as NetworkServiceEnables token kidnapping scenarios
IIS in R2 (and backported to IIS 7.0) will allow use of new “AppPool” identityIIS in R2 will also allow domain accounts for running services without management of passwords – Managed Service AccountsIdentity type in IIS in R2 will be set by default to 4 (App Pool Identity) versus 2 (Network Service) – NOT in IIS 7.0 / WS08
© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS,
IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.