How to secure IIS in Windows Server 2012

IIS (Internet Information Services) always faces the Internet. Therefore, it is important to follow some rules to minimize the risk of hacking or any other security issues.

  1. The first rule is to update the system regularly
  2. The second principle is to create Application Pool (containing one or more applications and allow configuration of many levels between different web applications). This can be done by following the steps shown below.

Step 1: You must access Server Manager> Internet Information Services (IIS) Manager> Application Pools .

How to secure IIS in Windows Server 2012 Picture 1 Go to Server Manager> Internet Information Services (IIS) Manager> Application Pools

Step 2: Click Sites , right-click Default Website , select Manage Website> Advanced Settings .

How to secure IIS in Windows Server 2012 Picture 2 Select Manage Website> Advanced Settings

Step 3: Select Default Pools.

Step 4: Disable the OPTIONS method, this can be done by following the path Server Manager> Internet Information Services (IIS) Manager> Request Filtering .

How to secure IIS in Windows Server 2012 Picture 3 Go to Server Manager> Internet Information Services (IIS) Manager> Request Filtering

Step 5: In the Actions panel , select Deny Verb , enter OPTIONS into Verb , then click OK.

Step 6 : Enable Dynamic IP Restrictions blocks by going to IIS Manager , double-clicking on IP Address and Domain Restrictions , then selecting the Actions panel .

How to secure IIS in Windows Server 2012 Picture 4 Double click on IP Address and Domain Restrictions

Step 7: Then select Edit Dynamic Restriction Settings , modify and set dynamic IP restriction settings as needed, then click OK.

Step 8: Activate and configure the Request Filtering rules. To do this, go to IIS Manager , double-click Request Filtering, switch to the Rules tab , then the Actions panel .

How to secure IIS in Windows Server 2012 Picture 5 Activate and configure the Request Filtering rules

Step 9: Then select Add Filtering Rule , set the required rule, then click OK.

How to secure IIS in Windows Server 2012 Picture 6 Select Add Filtering Rule

Step 10 : Allow logging. To do this, go to IIS Manager , select the specific site you want to configure, and then select Logging.

How to secure IIS in Windows Server 2012 Picture 7 Allow logging
3.7 ★ | 3 Vote

May be interested

  • How to set up Windows Deployment Services on Windows Server 2016How to set up Windows Deployment Services on Windows Server 2016
    wds (windows deployment services) is a server role, providing a simple and secure means to remotely deploy the microsoft operating system to computers over the network. this tutorial introduces how to set up wds server 2016.
  • Secure FTP Server with Windows Server 2008Secure FTP Server with Windows Server 2008
    ftp is an unsecured protocol, it transmits data without performing encryption so that users may encounter risks when using this protocol.
  • How to secure SSH serverHow to secure SSH server
    secure ssh connection helps you protect linux system and data. system administrators and home users also need to keep computers accessible from the public internet. here are 10 easy ways to help protect your ssh server.
  • How to secure Linux Home ServerHow to secure Linux Home Server
    there are many reasons to set up a home server. you can use it as a media server, file server or even a local backup server.
  • 4 basic difference between Windows Server and Windows Desktop4 basic difference between Windows Server and Windows Desktop
    windows server is the operating system for servers, servers, so it will have differences compared to the windows desktop version we still see everyday. keep these in mind when you need to choose to install windows server or windows desktop. they are also important when you need to restore, repair installation.
  • Instructions for setting up and managing FTP Server on Windows 10Instructions for setting up and managing FTP Server on Windows 10
    if you want to create a private cloud for sharing and converting large files without restrictions, you can create an ftp server (file transfer protocol server) on your windows 10 computer.
  • Secure DNS connection with Windows Server 2008 R2 DNSSECSecure DNS connection with Windows Server 2008 R2 DNSSEC
    in this tutorial we will introduce general knowledge about dnssec and the reasons why securing dns infrastructure is important to your organization.
  • Why is Windows 11 so much more secure than Windows 10?Why is Windows 11 so much more secure than Windows 10?
    windows 11 will be a more secure operating system than windows 10. microsoft's new focus on security in windows 11 will revolve around a few key features.
  • Create VPN Server on Windows 8Create VPN Server on Windows 8
    no need to install any additional applications, you can easily 'turn' your computer into a vpn server if you're using windows 8. in this way, you can share data from the computer. as a simple lan system in the form of remote access. & a
  • VPN and SSH: Which method is more secure?VPN and SSH: Which method is more secure?
    both vpn and ssh allow network traffic to be transmitted through a secure connection. they have similarities but there are also differences. if you're wondering which technique to use, the article will help you understand how each technology works.