Security
Security |
|
Configuring Web services can be time consuming, due to the number of parameters that often need to be set. The IIS Admin Objects (IISAO) can help reduce this work by allowing you to write scripts that automate the process.
The IIS Admin Objects are an ADSI implementation for accessing and setting IIS 5.0 settings. They are COM Automation-based, and can be used with any language that supports Automation, such as Microsoft® Visual Basic® Scripting Edition (VBScript) or Microsoft® JScript®, Visual Basic, Java, or C++.
Table 9.7 lists some useful IISAO security-related settings:
Table 9.7 Security Settiings with IISAO
| IISAO Property/Object | Comment |
| AccessFlags | Sets access permissions such as Read, Write, and Script. |
| AccessSSLFlags | Sets SSL properties such as SSL required, requires 128-bit SSL, and requires client authentication certificate. |
| AnonymousPasswordSync | Supports Allow IIS to control password option. |
| AnonymousUserName & AnonymousUserPass | Allows anonymous user name and password. |
| AuthFlags | Specifies what sort of authentication scheme will be used. |
| IIsCertMapper | Manages mapping of client certificates to Windows user accounts. |
| LogonMethod | Specifies the logon method for Basic and Anonymous authentication. |
| PasswordCacheTTL | Specifies the amount of time in seconds that an expired password will be held in the memory cache. |
| UNCAuthenticationPassThrough | Enables user authentication pass-through for UNC virtual root access. This applies to authentication schemes that support delegation. |
For more information about these settings, see the IIS 5.0 online product documentation.