Authentication and Security White Paper for Internet Developers (174811)

We strongly recommend that all users upgrade to Microsoft Internet Information Services (IIS) version 6.0 running on Microsoft Windows Server 2003. IIS 6.0 significantly increases Web infrastructure security. For more information about IIS security-related topics, visit the following Microsoft Web site:

http://www.microsoft.com/technet/security/prodtech/IIS.mspx

SUMMARY

This article is a pointer to a white paper available for download. The white paper discusses Windows NT security as it relates to Internet Information Server (IIS) so that you can effectively troubleshoot security- related problems. It covers the three forms of authentication, how they differ, several ways of controlling access to key areas on your Web server, and the important, but almost universally misunderstood, concept of "delegation." Understanding delegation is mandatory for anyone building a data driven Web site using IIS. Understanding how Windows NT handles different "users" will potentially save you days or weeks of troubleshooting.

MORE INFORMATION

The following file is available for download from the Microsoft Download Center:

Download Iisauth.exe now

For additional information about how to download Microsoft Support files, click the following article number to view the article in the Microsoft Knowledge Base:

119591 How to Obtain Microsoft Support Files from Online Services

Microsoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help to prevent any unauthorized changes to the file.