New features for managing Internet Information Server-iis5.0

iis| Server in Windows 2000, Microsoft has updated the version of IIS, launched the Internet Information Server 5.0, compared to IIS4.0 IIS5.0 provides easy installation and management, enhanced application environment, standards-based The release protocol, which has greatly improved performance and scalability to provide customers with better stability and reliability.

　　 Security
Digest Authentication: Digest authentication allows users to be securely and rigorously authenticated across proxy servers and firewalls. In addition, anonymous, HTTP Basic, and Integrated Windows authentication (formerly known as Windows NT Challenge/Response authentication and NTLM authentication) can also be performed.
Secure communications: Secure Sockets Layer (SSL) 3.0 and Transport Protocol Layer Security (TLS) provide a secure way to exchange information between clients and servers. In addition, SSL 3.0 and TLS provide a way for the server to authenticate clients before they log on to the server. In IIS 5.0, both ISAPI and Active Server Pages have access to client certificates so that programmers can track users through their sites. Also, IIS 5.0 can map client certificates to Windows user accounts so that administrators can control access to system resources based on client certificates.
Server Gateway Cryptography: Server Gateway Cryptography (SGC) is an extension of SSL, allowing the use of the IIS export version of the financial system to take 128-bit encryption with a higher encryption performance. Although the SGC feature is already built into IIS 5.0, a special SGC certificate is still required to use SGC.

Security Wizard: The Security Wizard simplifies server management tasks.
The WEB Server Certificate Wizard simplifies certificate management tasks, such as creating certificate requests and managing certificate lifetimes.
The Permissions Wizard simplifies the task of configuring Web site access by assigning access policies to virtual directories and files. The Permissions Wizard can also update NTFS file permissions to reflect WEB access policies.
The CTL Wizard helps users to configure the certificate trust list (CTL). A CTL is a list of trusted certification authorities (CAs) for a specific directory. The CTL is especially useful for those Internet service providers (ISPs) that have several WEB sites on the server and require that each site have a list of different trusted certification authorities.
IP address and Internet domain restrictions: You can grant or deny access to a single computer, a group of computers, or an entire domain to the WEB.
Kerberos 5 authentication protocol compatibility: IIS is fully integrated with Microsoft? The Kerberos 5 authentication protocol implemented in Windows 2000, which allows users to pass authentication credentials between computers running Windows.
Certificate store: The IIS certificate store is currently integrated with Windows CryptoAPI storage. Windows Certificate Manager provides a single portal that allows users to store, back up, and configure server certificates.
FORTEZZA:IIS 5.0 supports U.S. government security standards commonly referred to as Fortezza. This standard ensures the security, integrity, authentication, and access control of messages, components and systems through a cryptographic mechanism to meet the security architecture requirements of the U.S. Department of Defense message systems. These functions can be achieved through server and browser software or PCMCIA card hardware.

　　 Manageability
Restart IIS: The Internet service can now be restarted without restarting the computer.
Backup and restore IIS: You can back up and store metabase settings to make it easier to return to a known security state.
Process account: Provides information about how a single Web site uses CPU resources in the server. This information is useful when determining which sites are using CPU resources disproportionately or with abnormal scripts and CGI processes.
Process limitations: You can limit the percentage of time that a CPU is processing an out-of-process ASP, ISAPI, and CGI application on a single Web site. In addition, you can terminate and restart an abnormal process.
Improved custom error message: When an HTTP error occurs on the Web site, the administrator can now send a message to the user. Also, you can include detailed ASP error process features by using 500-100.asp custom error messages. You can use custom errors provided by IIS 5.0, or you can create your own errors.
Configuration options: You can set permissions for read, write, execute, script, and FrontPage WEB operations at the site, directory, or file level.
Remote administration: IIS 5.0 already contains web-based management tools that can remotely manage users ' servers from almost any browser on any platform. With IIS 5.0, you can set up an administrative account called an operator to have certain Web site administration permissions to help share a portion of administrative tasks.
Terminal Services: Terminal Services is a feature of Windows 2000 that allows users to run 32-bit Windows applications on terminal and terminal simulators running on personal computers and other computer desktops. Terminal Services actually allows any desktop to run applications on the server. This allows users to manage Windows 2000 services such as IIS remotely, including from older PCs, and even from non-PC devices (such as UNIX workstations with compatible client software-non-Windows client devices requiring Third-party component software), as if users were on a server console Sample.
Centralized administration: Administrative Tools when IIS uses Microsoft Management Console (MMC). MMC supports the programs that administrators use to manage servers, called snap-ins. You can use the IIS snap-in on computers running Windows Professional to manage computers on an Intranet that is running Internet information services on Windows Server.

　　 Programmability
Active Server Pages: You can create dynamic content using server-side scripts and components to create dynamic content that is not browser-independent.
New ASP Features: Active server Pages adds and improves features that help improve performance and simplify server-side scripting.
Application Protection: IIS 5.0 provides greater protection and reliability for WEB applications. By default, IIS runs the application in a public or "common" process (that is, a process that is isolated from the core IIS process). You can also isolate applications that perform critical tasks, which should run outside of core IIS and the shared process.
ADSI 2.0: In IIS 5.0, administrators and application developers can add custom objects, properties, and methods to existing ADSI providers, further increasing the flexibility of the administrator's configuration site.

　　 new features of ASP
The foundation of various standards: Microsoft Internet Information Services version 5.0 complies with the HTTP 1.1 standard, including the ability to put and DELETE features and custom HTTP error messages, and supports custom HTTP headers.
Multiple sites, one IP address: Because the host header is supported, you can maintain multiple WEB sites on a single computer running Microsoft Windows desktop Server with an IP address. This is useful for Internet service providers and for corporate intranets that maintain multiple sites.
Web Distributed Authoring and Versioning (WebDAV): Allows remote authors to create, move, or delete files, file properties, directory, and directory properties on a server via an HTTP connection.
News and Mail: You can use the SMTP service and the NNTP service to set up an Intranet mail and news service that works with IIS.
PICS Rating: The Platform for Internet content Selection (PICS) hierarchy can be applied to sites where content is only suitable for adults.
FTP reboot: If there is a disruption in data transfer, you can now restore the file Transfer Protocol file download without having to download the entire file again.
HTTP Compression: Faster page transfers between the WEB server and the client with compression enabled. Compresses and caches static files and compresses dynamically generated files on demand.