Web server security (IIS server), website security, and application security can be used to configure an IIS server to protect itself and the website.
The following are the security options available in IIS server:
- Machine key
- Authentication
- Authorization rule
- IP address and domain restrictions
- ISAPI and CGI restrictions
- Server certificate
- Request filtering
- IIS Manager permissions and IIS Manager users
- NTFS permissions
We can install and configure security components on an IIS server for our website or web application that needs secure hosting.
In this chapter, we will start with some of the security information of IIS 10.0. You can try more security options if you wish to. Here, we will cover a few important parts.
