配置的會議狀態設置為ASP.NET與IIS 7.0
在默認配置,當它處理會議狀態為ASP, IIS在相似情況下處理會議狀態為ASP.NET。 在基本的設置之外,然而,您有許多選擇。 對於ASP.NET頁,您使用頁的使能會議狀態設置,并且控制以為特色,當主要控制打開或會議狀態管理或配置IIS使用一個只讀會議狀態。 您使用會議狀態特點優化怎麼會議使用狀態管理。
默認情況下, IIS在過程中維護會議狀態像ASP。 在您的服務器配置的每種ASP.NET應用可能有它自己的會議狀態設置。 當您激活了ASP.NET狀態服務并且配置它自動地時開始,您能為ASP.NET使用過程會議狀態管理。 過程狀態管理保證會議狀態信息被保存,當應用的回收時工作者過程。 您能配置過程狀態管理使用狀態服務器或微軟SQL服務器數據庫。 在您配置一臺SQL服務器為會議狀態之前,您在服務器必須跑InstallSqlState.sql劇本。 默認情況下,這個劇本在%SystemRoot% \ Microsoft.NET \框架\ FrameworkVersion被存放, FrameworkVersion是.NET框架的版本您使用,例如V2.0.50727。
您打開或會議狀態管理或通過跟隨這些步使用一個只讀會議狀態:
1. 在IIS經理,駕駛對您想要處理配置階層的水平,然後顯示頁和控制頁通過雙擊頁和控制特點。
2. 在頁和控制頁,使能會議狀態正文框顯示當前會議狀態。 如所需要,改變這個設置到錯誤到功能失效會議狀態維護,真實使會議狀態維護或者只讀使用一個只讀會議狀態。
3. 在行動單塊玻璃,點擊申請保存您的設置。
一旦您使能一個讀寫或只讀會議狀態,您能使用會議狀態特點的設置優選會議狀態配置。 跟隨這些步:
1. 在IIS經理,駕駛對您想要處理配置階層的水平,然後顯示會議狀態頁通過雙擊會議狀態特點。
2. 在會議狀態方式設置框架在主要單塊玻璃,使用以下選擇設置會議狀態方式:
• 沒使能精選使會議狀態失去能力的這個選擇。
• In Process Select this option to store session state data for a managed-code application in the worker process where the application runs. This is the default setting.
• Custom Select this option to configure IIS to use a custom provider to handle session state for ASP.NET applications.
• State Server Select this option to enable the ASP.NET State Service and store session state data outside the worker process where the application runs. The ASP.NET State Service stores the session state in an internal database by default or in a database of your choosing. You must start the service and configure it for automatic startup.
• SQL Server Select this option to configure IIS to use a SQL Server database to store session state data instead of storing it in the worker process where the application runs. The ASP.NET State Service stores the session state in the SQL Server database you designate. You must start the service and configure it for automatic startup.
3. With the State Server or SQL Server option, the Connection String text box sets the connection string that is used to connect to the state server or SQL Server. If you click the related selection drop-down list, you can choose a previously created connection string to use. If you click the related Create button, you create the required connection string by using the Create Connection String dialog box.
4. With the State Server or SQL Server option enabled, the related Time-Out text box sets the time, in seconds, that the connection will be maintained. The default for a state server is 10 seconds. The default for a server running SQL Server is 30 seconds.
5. With the SQL Server option enabled, you can select the Enable Custom Database check box to enable a custom SQL Server database for storing session state data.
6. On the Cookie Settings pane, in the Mode drop-down list, select the desired item to specify how cookies are used to store session state data. The items are:
• Auto Detect IIS uses cookies if the browser supports cookies and cookie support is enabled. Otherwise, IIS doesn't use cookies.
• Use Cookies Allows IIS to track the session state by using cookies. IIS passes the session state in cookies for all requests between a client browser and the Web server. Because cookies do not require redirection, cookies allow you to track session state more efficiently than any of the methods that do not use cookies. Using cookies also has several other advantages. Cookies allow users to bookmark Web pages, and they ensure that state is retained if a user leaves one site to visit another and then returns to the original site.
• Use Device Profile IIS uses cookies if the device profile supports cookies regardless of whether cookie support is enabled or disabled. The only time that IIS doesn't use cookies is when the device profile indicates that the browser doesn't support cookies.
• Use URI IIS inserts the session ID as a query string in the Uniform Resource Identifier (URI) request, and then the URI is redirected to the originally requested URL. Because the changed URI request is used for the duration of the session, no cookie is necessary.
7. Keep the following in mind when you are specifying how cookies are used to store session state data:
• When you use the Auto-Detect cookie, Use Device Profile, or Use URI modes, the Regenerate Expired Session ID check box is selected automatically. This ensures that IIS rejects and reissues session IDs that do not have active sessions. You should require that expired session IDs be regenerated because this ensures that IIS expires and regenerates tokens, which gives a potential attacker less time to capture a cookie and gain access to server content. If you want to disable session ID regeneration, as may be necessary when initially testing a new deployment in a development environment, clear this check box. Be sure to re-enable this feature later to enhance server security.
• When you use the Auto-Detect cookie, Use Cookies, or Use Device Profile modes, the entry in the Time-Out (In Minutes) text box sets the period of time that IIS maintains a session object after the last request associated with the object is made. The default time-out is 20 minutes. For a high-usage application in which you expect users to move quickly from page to page, you might want to set a fairly low time-out value, such as 5 or 10 minutes. On the other hand, if it's critical that the user's session is maintained to complete a transaction, you might want to set a long time-out value, such as 60 minutes.
• When you use the Auto-Detect cookie, Use Cookies, or Use Device Profile modes, the Name text box sets a name for the cookie. The default is ASP.NET_SessionId. To enhance security, you may want to change this value to a name that isn't as readily identifiable as the session ID.
• The Use Hosting Identity For Impersonation option enables Windows authentication for remote connections using the host process identity. Typically, this is the setting you want to use to ensure that IIS can read and write session state data.
8. In the Actions pane, click Apply to save your settings.
Source of Information : Microsoft Press Internet Information Services IIS.7.0 Administrators Pocket Consultant
Written by magakos. Read more great feeds at is source WEBSITE
no comments.
Read more articles on IIS 7.0 and otherSoftware.
- [+] Digg: Feature this article
- [+] Del.icio.us: Bookmark this article
- [+] Furl: Bookmark this article
