Applies to: Exchange Server 2010 SP3, Exchange Server 2010 SP2

Topic Last Modified: 2010-11-08

Microsoft Exchange Server 2010 automatically configures multiple Internet Information Services (IIS) virtual directories during installation. This topic contains information about the default IIS authentication settings and default Secure Sockets Layer (SSL) settings for the Client Access and Mailbox server roles.

Client Access Server Role

The following table lists the default settings on a stand-alone Exchange 2010 Client Access server.

Default Client Access server IIS authentication and SSL settings

Virtual directory Authentication method SSL settings Management method

Default Web site

  • Anonymous

  • Required

IIS ,management console

aspnet_client

  • Anonymous authentication

  • SSL required

  • Requires 128-bit encryption

IIS management console

Autodiscover

  • Anonymous authentication

  • Basic authentication

  • Windows authentication

  • SSL required

  • Require 128-bit encryption

Exchange Management Shell (Shell)

ecp

  • Anonymous authentication

  • Basic authentication

  • SSL required

  • Requires 128-bit encryption

Exchange Management Console (EMC) or Shell

EWS

  • Anonymous authentication

  • Windows authentication

  • SSL required

  • Requires 128-bit encryption

Shell

Microsoft-Server-ActiveSync

  • Basic authentication

  • SSL required

  • Requires 128-bit encryption

EMC or Shell

OAB

  • Windows authentication

  • Not required

EMC or Shell

owa

  • Basic

  • SSL required

  • Requires 128-bit encryption

EMC or Shell

Powershell

  • Anonymous authentication

  • Not required

Shell

Rpc

  • Basic authentication

  • Windows authentication

  • SSL required

  • Requires 128-bit encryption

Shell

RpcWithCert

By default, all authentication methods are disabled

  • Required

 

Mailbox Server Role

The following table lists the default settings on a stand-alone Exchange 2010 mailbox server.

Default Mailbox server IIS authentication and SSL settings

Virtual directory Authentication method SSL settings Management method

Default Web site

  • Anonymous authentication

  • SSL required

  • Requires 128-bit encryption

This virtual directory isn't configurable by the user.

PowerShell

  • Anonymous authentication

  • Not required

Shell.