Rodney BuikeTechnology Advisorrodney.buike@microsoft.comhttp://www.thelazyadmin.comhttp://blogs.technet.com/canitproTwitter: @rbuike

Today’s GoalsGet Windows Server 2008 R2 installed with…

IIS 7.5ASP.NETPHP

Discover what’s new in Server 2008 R2 web services.NET on Server Core R2

Learn what’s possible on the Windows platformWeb Platform InstallerRemote Management and PowerShellBest Practices

Supports 4 processors and 32 GB RAM (64 bit)Supports 4 processors and 32 GB RAM (64 bit)

Web edition of Windows Server 2008 R2Will include Web Server (IIS) and DNS rolesServer Core installation supports ASP.NET

Optimized for Internet-facing Web-servingenvironments not requiring authenticationCan run Windows Media Services 2008, Windows SharePoint Services,Office SharePoint Server and SQL ServerDoes not require purchase of Client AccessLicenses (CALs) or External Connector

IIS 7.5 & New Features in R2

ASP.NET on Server Core

PowerShell Module & Cmdlets

Integrated FTP and WebDAV

Integrated Admin Pack Modules

Configuration Logging & Tracing

Best Practice Analyzer

Enhancing IIS Feature Set

IIS 7.0 PlatformIIS 7.0 Platform IIS 7.5 PlatformIIS 7.5 Platform

Extensions Extensions Add Further Add Further FunctionalityFunctionality

Extensions Extensions Add Further Add Further FunctionalityFunctionality

FTP & FTP & WebDAV WebDAV

Integrated Integrated

IIS Extensions Available

Extension Beta RC RTWIIS FTP Service 7.5 (for IIS 7.0) IIS WebDAV 7.5 (for IIS 7.0) IIS Manager for Remote Administration IIS Administration Pack (for IIS 7.0) Windows PowerShell Snap-In for IIS 7.0 IIS URL Rewriter UrlScan 3.1 (for IIS 5.1 / IIS 6.0) IIS Media Services 2.0 IIS Dynamic IP Restrictions IIS Application Request Routing (2.0) (1.0)IIS Web Deployment Tool IIS Database Manager IIS Advanced Logging Web Platform Installer (2.0) (1.0)

.NET 2.0 in Server Core

Subset of .NET 2.0 on Server Core.NET functionality aligns with functionality in Server CoreNot installed by default in RC

How to install if not already installedFor 64-bit applications (R2 is 64-bit only)Start /w ocsetup NetFx2-ServerCore

If 32-bit support is needed:Start /w ocsetup ServerCore-WOW64Start /w ocsetup NetFx2-ServerCore-WOW64

.NET 3.x in Server Core

.NET 3.0 functionalityNo WPF in Server Core

.NET 3.5 functionalityLINQ

.NET 3.0 and 3.5 installed with a single packageFor 64-bit applicationsStart /w ocsetup NetFx3-ServerCore

If 32-bit support is needed:Start /w ocsetup ServerCore-WOW64Start /w ocsetup NetFx3-ServerCore-WOW64

Install ASP.NET on Server Core(IIS 7.0 on Server 2008 Core)

start /w ocsetup IIS-WebServerRole;IIS-WebServer

start /w ocsetup IIS-CommonHttpFeatures;IIS-DefaultDocument;IIS-Security;IIS-RequestFiltering

start /w ocsetup IIS-ApplicationDevelopment;IIS-ISAPIFilter;IIS-ISAPIExtensions;IIS-NetFxExtensibility

start /w ocsetup IIS-ASPNET

Install ASP.NET on Server Core(IIS 7.5 on Server 2008 R2 Core)

dism /online /enable-feature /featurename:IIS-WebServerRole /featurename:IIS-WebServer

dism /online /enable-feature /featurename: IIS-CommonHttpFeatures /featurename:IIS-DefaultDocument /featurename:IIS-Security /featurename:IIS-RequestFiltering

dism /online /enable-feature /featurename: IIS-ApplicationDevelopment /featurename:IIS-ISAPIFilter /featurename:IIS-ISAPIExtensions /featurename:IIS-NetFxExtensibility

dism /online /enable-feature /featurename: IIS-ASPNET

ASP.NET on Server Core

Install PHP on Server Corestart /w ocsetup IIS-WebServerRole;WAS-WindowsActivationService;WAS-ProcessModel;IIS-CGIExtract to C:\PHPCopy C:\PHP\PHP.ini.recommended to C:\PHP\PHP.iniEdit PHP.ini

Set fastcgi.impersonate = 1Set cgi.fix_pathinfo=1Set cgi.force_redirect = 0Set open_basedir to point to WWWROOTSet extension_dir to point to “./ext”Enable required PHP extensionsRun C:\PHP\PHP.exe –info to test

PHP on Server Core

Web Platform Installer

Download, install and update latest components of the Microsoft Web PlatformInstall open source .NET and PHP web applications

Install WordPress with WPI

Remote Management of IIS

Install the IIS Management Servicedism /online /enable-feature /featurename:IIS-ManagementService

Enable Remote ManagementHKLM\Software\Microsoft\WebManagement\ServerSet EnableRemoteManagement to 1

Start the Management Servicenet start wmsvc

Service is not set to start automaticallysc config wmsvc start= auto

Remote Management of Server Core

PowerShell Web Administration

To use Web Administration moduleimport-module WebAdministrationcd IIS:\

IIS cmdletsHigh-level and low-level cmdlets for administration and modifying configurationBest Practice Analyzer cmdletsStart /w ocsetup BestPractices-PSH-Cmdletsimport-module BestPractices

Cmdlets are:get-bparesultinvoke-bpamodelset-bparesult

IIS Best Practice Analyzer

Seven criteria are checked for compliance1-7

Best Practices Analyzer

BenefitsBenefitsSynchronize your server farm Synchronize your server farm efficientlyefficiently

Package, archive and deploy Web Package, archive and deploy Web applications more easilyapplications more easily

Migrate Web applications between Migrate Web applications between IIS 6.0 / 7.0 / 7.5 with easeIIS 6.0 / 7.0 / 7.5 with ease

FeaturesFeatures

Integrated with IIS Manager and Integrated with IIS Manager and Visual Studio 2010Visual Studio 2010

Ability to migrate the entire Web Ability to migrate the entire Web server, Web application or Web siteserver, Web application or Web site

Synchronizes only changed dataSynchronizes only changed data

Warns of missing dependencies Warns of missing dependencies during synchronizationduring synchronization

Automatically gathers content, Automatically gathers content, configuration, certificates, Registry configuration, certificates, Registry Keys, ASP.NET configurationKeys, ASP.NET configuration

Packages Web app or entire sitePackages Web app or entire site

Supports both live servers and zipped Supports both live servers and zipped packages as source or target appspackages as source or target apps

Administrative privileges are not Administrative privileges are not required to deploy Web applicationsrequired to deploy Web applications

Web Deployment ToolSimplify the migration, management and deployment of IIS Web Servers, Web Simplify the migration, management and deployment of IIS Web Servers, Web applications and Web sites. It can be used to package, synchronize IIS sites applications and Web sites. It can be used to package, synchronize IIS sites including content, configuration certificates and databases.including content, configuration certificates and databases.

Web Deployment Tool

Additional IIS Enhancements

IIS Application Auto-StartCLR Settings per Application PoolConfiguration Logging and TracingNew Application Pool Identities and Managed Service Accounts

Go Do’sDownload Windows Server 2008 R2 RC

microsoft.com/windowsserver2008Install IIS, ASP.NET and PHP

learn.iis.netTry the Web Platform Installer

microsoft.com/webTell us what you are doing!

rodney.buike@Microsoft.com

Rodney BuikeTechnology Advisorrodney.buike@microsoft.comhttp://www.thelazyadmin.comhttp://blogs.technet.com/canitpro

BenefitsBenefitsPublish securely and easily from IIS Manager via Internet standardsSimplify hosting through integrated Web and FTP site managementImprove security and auditing through new authentication providers and enhanced logging

FeaturesFeaturesIntegrated with IIS ManagerIntegrated with IIS Manager

Support for FTP over SSLSupport for FTP over SSL

Host FTP and Web content from Host FTP and Web content from same site by adding FTP binding same site by adding FTP binding

Support for hosting multiple FTP Support for hosting multiple FTP sites on same IP addresssites on same IP address

Improved virtual directory supportImproved virtual directory support

Improved user isolation through Improved user isolation through per-user virtual directoriesper-user virtual directories

Improved logging support Improved logging support

Detailed error messages for end Detailed error messages for end users and event tracing for users and event tracing for server-side troubleshootingserver-side troubleshooting

FTP Service 7.5Enables Web authors to publish content more easily and securely, and Enables Web authors to publish content more easily and securely, and offers improved integration and management for hosters and administratorsoffers improved integration and management for hosters and administrators

BenefitsBenefitsPublish securely and easily from IIS ManagerConfigure publishing on a per-site levelImprove security and auditing through custom authorization support

FeaturesFeaturesIntegrated with IIS ManagerIntegrated with IIS Manager

Support for HTTP over SSLSupport for HTTP over SSL

Configuration can be done at the Configuration can be done at the site-level rather than at the site-level rather than at the server-level as in IIS 6.0server-level as in IIS 6.0

Per-URL authoring rules, allowing Per-URL authoring rules, allowing administrators to specify custom administrators to specify custom WebDAV security settings on a WebDAV security settings on a per-URL basis per-URL basis

WebDAV 7.5Enables Web authors to publish content more easily and securely, and Enables Web authors to publish content more easily and securely, and offers better offers better integration, configuration and authorization features

BenefitsBenefitsManage your configuration files with Configuration EditorView key statistics about your website with IIS ReportsManage existing features with IIS Manager UI Extensions

FeaturesFeaturesGenerate code to automate tasksGenerate code to automate tasks

Scoped searches of the Scoped searches of the configuration systemconfiguration system

View key statistics about websitesView key statistics about websites

Default reports for administrators Default reports for administrators or delegated managementor delegated management

Create custom reportsCreate custom reports

FastCGI module allows FastCGI module allows management of FastCGI settingsmanagement of FastCGI settings

ASP.NET modules allow ASP.NET modules allow management of authorization and management of authorization and custom errors settingscustom errors settings

HTTP Request Filtering moduleHTTP Request Filtering module

Administration Pack ModulesA collection of IIS modules that enhance the functionality of IIS Manager to A collection of IIS modules that enhance the functionality of IIS Manager to help administer IIS Web servershelp administer IIS Web servers

BenefitsBenefitsSimplify the administration of your Simplify the administration of your Web site by scripting tasksWeb site by scripting tasks

Execute repetitive administrative Execute repetitive administrative tasks across serverstasks across servers

Improve your decision making by Improve your decision making by consolidating metrics from your consolidating metrics from your servers in real-timeservers in real-time

FeaturesFeaturesSeamless integration into the Seamless integration into the PowerShell environmentPowerShell environmentLow-level and task-based cmdlets Low-level and task-based cmdlets specific to IIS that allows to:specific to IIS that allows to:

Add and change configuration Add and change configuration properties of Web-Sites, Web properties of Web-Sites, Web Applications, Virtual Directories Applications, Virtual Directories and Application Poolsand Application PoolsExecute advanced configuration Execute advanced configuration taskstasksQuery run-time data Query run-time data

Windows PowerShell ModuleAllows IT professionals and hosters to easily automate complex IIS 7.5 Allows IT professionals and hosters to easily automate complex IIS 7.5 administrative tasks effectively increasing the productivity of administratorsadministrative tasks effectively increasing the productivity of administrators

PowerShell Scenarios for IIS(1)Add / remove / change:

ApplicationsVirtual directoriesSitesApplication pools

Add sites based on templateCopy config and content of existing site / vdir to other site / vdirConfigure SSLFind log file directory for siteChange authentication settings ofsite / app / vdir

Set IP restrictions on a siteRecycle:

Application poolsIIS (IISRESET)

Backup IIS configurationActivate sites (start/stop)Add bindings to existing web-siteConvert folders to applications / vdirsChange AppPool account identities and passwordsUnload web appsConfigure redirection

PowerShell Scenarios for IIS(2)Add / remove / reorder default documentChange port number / IP address of a site bindingChange physical path of a siteEdit list of allowed Web Service ExtensionsAdd new custom error pageRegister new:

ISAPI filter / extensionNative module / handlerManaged module / handler (integrated pipeline/ISAPI mode)

Add / remove / change MIME MapMonitor:

Site statusExecuting requests

Test site is up and runningFind all stopped sitesFind configuration setting Move log filesCreate new AppPool with recycling settingsLock section or elementChange Application Pool of an application

IIS Application Auto-StartIIS process model is request drivenTo instantiate critical infrastructure and be more responsive certain applications need to be pre-loadedApplication preLoad feature in IIS 7.5 allows applications to automatically start without a requestAdd the following to applicationHost.config file:

<application path="/myapp" preloadEnabled="true">

<virtualDirectory path="/" physicalPath="c:\inetpub\myapp"/></application>

Add the following to web.config file:<preload>

<add value="default.aspx"/></preload>

CLR Settings per App Pool

ASP.NET settings stored in global ASPNET.configCan now create custom ASPNET.config files

Specify location in applicationHost.configLocal settings honored at runtime – can be UNC pathE.g. set maximum number of threads, maximum number of requests or garbage collection settings

Add the following in applicationHost.config file:<applicationPools>

<add name=”DefaultAppPool” CLRConfigFile=”c:\myConfig\CLRConfigFile.txt” />

<add name="Classic .NET AppPool“ managedPipelineMode="Classic" /><applicationPools>

Configuration Logging Tracing

IIS 7.0 does not include any built-in tracing mechanism for configuration changesIIS in Windows Server 2008 R2 provides:

Read / write auditing of configuration system Logging of events unrelated to Reads / Writes

Logs kept under Applications and ServicesApplications and Services Logs > Microsoft > Windows > IIS-Configuration

Four logs:Administrative, Analytic, Debug, WriteAuditing

By default, all logging is disabled

Application Pool Identities

All application pools run as NetworkServiceEnables token kidnapping scenarios

IIS in R2 (and backported to IIS 7.0) will allow use of new “AppPool” identityIIS in R2 will also allow domain accounts for running services without management of passwords – Managed Service AccountsIdentity type in IIS in R2 will be set by default to 4 (App Pool Identity) versus 2 (Network Service) – NOT in IIS 7.0 / WS08

© 2009 Microsoft Corporation. All rights reserved. Microsoft, Windows, Windows Vista and other product names are or may be registered trademarks and/or trademarks in the U.S. and/or other countries.The information herein is for informational purposes only and represents the current view of Microsoft Corporation as of the date of this presentation. Because Microsoft must respond to changing market conditions, it should not be interpreted to be a commitment on the part of Microsoft, and Microsoft cannot guarantee the accuracy of any information provided after the date of this presentation. MICROSOFT MAKES NO WARRANTIES, EXPRESS,

IMPLIED OR STATUTORY, AS TO THE INFORMATION IN THIS PRESENTATION.