4 days virtual course

Masterclass: Internet Information Services Management [IIS]

Internet Information Services is a solution that can be delivered in a couple of hours as well as in 3 weeks – we practiced both options! IIS is a never-ending subject that requires a deep-dive if you consider using it for web farm administration or if you want to become familiar with IIS behavior in particular situations.

IIS

During this intensive 4-day training students will be introduced to the process of configuring advanced IIS features, configuring security settings, performing advanced troubleshooting and monitoring. You will learn everything you need to maintain and provide availability to business Web Application platform.

To get more practice we offer three extra weeks of labs online!

Target audience

Enterprise administrators, infrastructure architects, security professionals, systems engineers, network administrators, IT professionals, security consultants and other people responsible for implementing network and perimeter security.

Prerequisites

To attend this training, you should have a good hands-on experience in administering Windows infrastructure. At least 8 years in the field is recommended.

Content

Module 1: Introducing, installing and configuring IIS 10 on Windows Server 2019

Introducing Internet Information Services 10
Administration tools
Architecture overview
Configuration System overview
Comparing previous versions of IIS
Installing the Web Server (IIS) role in Windows Server 2019
Discussing the deployment scenarios
Using Server Manager
Using Unattended Setup
Using Command Line
Troubleshooting installation
Post-installation administration tasks
HTTP Features
Security Settings
Logging

Module 2: Administering Web Sites

Creating a Web Site, Application, Virtual Directory
Managing Security settings for Web Sites
Administering Web Site logging
Configuring Failed Request Tracing
Managing Virtual Directories and remote content
Configuring Authentication Types
Configuring Bindings

Module 3: Administering Applications and Application Pools

Managing Application Pools and Applications
Global Application Initializations
Managing Application Pool Identity
Managing Worker Processes and requests
CPU Throttling: Sand-boxing Sites and Applications
Idle Worker Process Page-Out

Module 4: Configuring Application Development Settings

ASP.NET Security Settings
ASP.NET Application Development Settings
Configuring ASP.NET
Working with .Net Core

Module 5: IIS 10 functionality extensions

Architecture Extensions
CGI
FastCGI
ISAPI
ASP
Managing Extensions
Security
Delegation
Functionality Extensions
PHP
WebDAV
Media Services
URL Rewrite
Performance Extensions
Application WarmUp
Security Extensions
URLScan / URLRewrite
Dynamic IP Restrictions
Administrative extensions

Module 6: Managing IIS 10 Modules

Adding IIS 10 Modules
Administering IIS 10 Modules

Module 7: Securing the IIS 10 platform and web environment

Configuring security settings on Windows Server 2019
Centralized SSL Certificate Support
Secure Web Site settings
Configuring authentication and authorization
Restricting Web Site access
Secure Web Server implementation scenario

Module 8: IIS 10 Remote Management

Enabling and configuring remote administration
Enabling and configuring delegated administration
Enabling and configuring feature delegation
Managing application Host.config and Web.config access levels
Security considerations for remote management

Module 9: Configuring FTP Server on IIS 10

Managing FTP Authentication
Managing FTP Authorization
Configuring FTP Logging
Configuring FTP Logon Attempt Restrictions
Administering FTP Request Filtering
Configuring FTP User Isolation

Module 10: Managing IIS 10 from the command line

Tools overview
Advanced management with PowerShell
Tools for Running Administrative Tasks in IIS
Automating management with Appcmd
IIS 10 and scripting
3rd party management tools

Module 11: Tuning IIS 10 health and performance

Performance monitoring techniques
Monitoring IIS 10 under attack
Optimizing IIS 10 settings for better performance
Implementation scenarios analysis
Dynamic site activation
Idle Worker Process Page-out
HTTP/2

Module 12: Administering Web Server Availability with Web Farms

Shared Configuration
Advanced Network Load Balancing settings and configuration
Building the Web Farm
Managing the Web Farm
Automating tasks in multiple server IIS 10 environment
Policy based management
Server Name Indication (SNI) – SSL Scalability
Backing Up an IIS Web Site
Restoring an IIS Web site
Application Request routing

Module 13: IIS 10 Diagnostics

Auditing IIS 10 logs
Enhanced Logging
Logging to Event Tracing for Windows
Common error messages and examples
Auditing communication problems and examples
Troubleshooting authentication problems
Troubleshooting authorization problems
Managing and understanding problems with configuration

Materials

Unique tools, over 150 pages of exercises and presentation slides with notes.

CPE Points (Continuing professional education)

It will be possible to earn CPE points after completing this course.

Form

Virtual delivery with live trainer

Before you participate on a virtual course, we always try to arrange a 15 - 20 minute test session with the participants a week before to make sure that everyone is capable to attend the Masterclass. Below you will find the technical requirements for connecting to the virtual training:

A computer with a stable internet connection (preferably Windows or Mac OS)
Permissions for outgoing RDP connections to external servers (to our lab environment) – port 3389
A headset (headphones + microphone)
Webcam (built-in or plug-in)
Additional monitor will be helpful but it’s not required

Instructor

Paula Januszkiewicz er verdenskendt som sikkerhedsekspert. Paula elsker at lave penetrationstests, IT-sikkerhedsevalueringer, og hendes motto er: "harden 'em all"! Enterprise Security MVP og -underviser (MCT) og Microsoft Security Trusted Advisor.