Shulou(Shulou.com)06/03 Report--

After the exchange is deployed, the system will automatically establish an IIS service to respond to the corresponding request.

The client access server (hereinafter referred to as CAS) is essentially an IIS server, which deploys a set of sites named "Default web site" in the server to complete the response of OWA, ecp, activesync, outlookanywhere, autodiscover and other applications.

Tips:

The Default web site site corresponds to the CAS server role

The Exchange back end site corresponds to the Mailbox server role

If you want to change the authentication method, start the IIS manager, find the appropriate virtual directory, and select authentication. As shown below:

The different authentication methods are described below:

1.ASP.NET simulation

When this mode is enabled, the application can run in two different contexts: a user authenticated by IIS or any account that uses the settings. If you use anonymous authentication and choose to run the ASP.NET application as an authenticated user, the application runs as an anonymous user. If the selected thief runs under any account, it runs in any security context set for that account.

2.FORMS authentication (forms authentication)

In this mode, users manage client registration and authentication at the application level, and do not rely on IIS authentication mechanism.

The login information is transmitted in clear text.

3.windows authentication

This authentication is generally more secure than basic authentication, and will play the greatest role if the user has a domain environment. Under Windows authentication, the browser will use the current login credentials and will be prompted to re-enter the user name and password if it is not successful.

During windows authentication, the user's password is not passed to the server.

4. Basic authentication

This approach requires a user name and password and is extremely compatible with browsers.

The user name and password are passed in clear text, so this method is not secure.

5. Anonymous authentication allows any user to access any public content and does not require authentication. Unsafe. 6. Digest is authentication. This method requires a user name and password, and the security is OK. This authentication method provides the same functionality as basic authentication. But the password is not sent in clear text. Exchange managers can change different authentication methods in the IIS virtual directory according to the needs of the environment.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.