Windows 2000 security is the security model upon which Internet Information Services security rests. Securing an Internet Information Services server requires a combination of both Internet Information Services and Windows 2000 security measures. Before covering the security features of IIS in the next chapter, it is necessary to discuss Windows 2000 security.
This chapter covers the following topics:
How Windows 2000 security works with Internet Information Services
How Windows 2000 users and groups interact with Internet Information Services, including passwords, policies, and access tokens
How to optimize security with NTFS
How to take advantage of the auditing and logging features of Internet Information Services