Installing and Upgrading IIS

For the first time, Microsoft has rightfully opted not to include IIS as a default installation option. This way, a file and print server, a domain controller, or any other type of server that isn't supposed to be a Web server won't have IIS installed by default and potentially increase security vulnerabilities.

You must have administrator privileges to be able to install IIS. There are two ways to begin installation: through Add or Remove Programs in the Control Panel or through the Manage Your Server Wizard that is automatically displayed after Windows Server 2003 installation.

To install IIS using Add or Remove Programs in the Control Panel, follow these steps:

1.	Select Add or Remove Programs from the Start, Control Panel menu.
2.	Click Add/Remove Windows Components in the Add or Remove Programs dialog box.
3.	In the Windows Components Wizard, scroll down until you see Application Server. Highlight this entry, click the check box, and then click the Details button.

4.	In the Application Server dialog box, illustrated in Figure 11.2, you can see the list of components (for example, ASP.NET, COM+ access, Internet Information Services, and more) that you can install. If you plan on using any of these services, select them by clicking the check box. For now, highlight Internet Information Services (IIS) and click Details. Figure 11.2. Application Server components dialog box.
5.	Select the components that you want to install. If you don't click to install a required component, the required components are automatically selected. Click OK twice when you're done.
6.	Click Next in the Windows Components Wizard to begin installing IIS.
7.	Click Finish when installation is complete.

To install IIS using the Manage Your Server Wizard, do the following:

1.	In the Manage Your Server Wizard, click Add or Remove a Role.
2.	When the Configure Your Server Wizard window appears, click Next to continue. Windows Server 2003 will analyze your network configuration. Note You must be connected to the network to run the network-analyzing function; otherwise, you will get an error notifying you to check cables and connections.
3.	Click on Web Application Server (IIS, ASP.NET) and then click Next.
4.	Select any of the two options (FrontPage Server Extensions, or Enable ASP.NET) and click Next to continue.
5.	After reviewing the summary of information, click Next again to begin IIS installation.
6.	Click Finish when the installation is complete.

Although using the Manage Your Server Wizard is easier than using Add or Remove Programs, your ability to control what gets installed is minimal.

Upgrading from Other Versions of IIS

As a previous version of Windows is upgraded to Windows Server 2003, IIS is also automatically upgraded. During Windows Server 2003 setup, all IIS-related services running on the previous Windows version are disabled during the upgrade. These services and more are enabled after the upgrade is complete.

Windows Server 2003's IIS is inherently more secure than any other versions. As a result, all Web sites currently upgraded to IIS 6 are stopped after the upgrade. The primary reason for stopping all Web sites is to help prevent IIS security vulnerabilities because of previous Windows defaults. Therefore, if a previous Windows server has IIS installed but isn't supposed to be serving as a Web server, the servers will be more secure than before by default. In this scenario, Web sites aren't enabled.

Another key point to upgrading from previous versions of IIS is that all applications are configured in the IIS 5 isolation mode. This configuration preserves the applications and provides compatibility.

Figure 11.2. Application Server components dialog box.

Upgrading from Other Versions of IIS