Register

Forgot Password

Site FAQ

Home > IT Answers > Microsoft Windows > Securing IIS on a Windows server 2003

Troubleshooter24

755 pts.

Securing IIS on a Windows server 2003

IIS, IIS configuration, IIS Server, Security in 2010, Windows, Windows Server 2003, Windows Server 2003 security

How can I harden or configure IIS on a Windows server 2003 to be as secure as possible? It is hosting a admin site and that is all for now. We are running McAfee 8.7.1

Software/Hardware used:

ASKED: September 23, 2010 1:46 PM

UPDATED: November 8, 2010 7:03 AM

RELATED QUESTIONS

Answer Wiki:

for my side, we actually harden the servers and patch the servers (windows) and IIS. If there is any FTP sites, remove the Anonymous Login too ---------- Setting the site to only support HTTPS and requiring Windows Authentication is usually a good thing as well.

Last Wiki Answer Submitted: September 23, 2010 6:15 pm by jinteik

15,485 pts.

All Answer Wiki Contributors: jinteik

15,485 pts.

To see all answers submitted to the Answer Wiki: View Answer History.

RSS - Discussions Help

Discuss This Question:

_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

POSTED: Nov 8, 2010 7:03 AM (GMT)

To hardening IIS on windows 2003

1. Start IIS Manager or open the IIS snap-in.
2. Expand Server_name, where Server_name is the name of the server, and then expand Web Sites.
3. In the console tree, right-click the Web site, virtual directory, or file for which you want to configure authentication, and then click Properties.
4. Click the Directory Security or File Security tab, and then under Anonymous and access
control, click Edit.
5. Click to select the check box next to the authentication method or methods that you want to use, and then click OK.

Another type of hardening is based on the requesting host instead of on user credentials. You can limit access based on source IP address, source network ID, or source domain name. To configure this :

1. Under IP Address and Domain Name Restrictions, click Edit.
2. Do one of the following:
a) To deny access, click Granted Access, and then click Add. In the Deny Access On dialog box that appears, specify the option that u want, and then click OK.

The computer, group of computers, or domain that you specified is added to the list.
b) To grant access, click Denied Access, and then click Add. In the Grant Access On dialog box that appears, select the option that u want, and then click OK.

The computer, group of computers, or domain that u selected is added to the list.
3. Click OK.

Now quit IIS Manager or close the IIS snap-in.

Subhendu Sen

22,035 pts.

Ask a Question

Browse IT Answers by Topic

>>VIEW ALL TAGS

Community Blog | About Us | Contact Us | FAQ | Terms of Use | DMCA Policy

TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organization's IT projects - with its network of technology-specific Web sites, events and magazines.
All Rights Reserved, Copyright 1999-2013, TechTarget | Read our Privacy Policy
Questions and Answers Index 1 | Questions and Answers Index 2 | IT Topics Index 1 | IT Topics Index 2 | Blogs Index | Blogs Tags