How to iInstall and use the IIS Security "What if" tool

Article translations Article translations
Article ID: 229694
We strongly recommend that all users upgrade to Microsoft Internet Information Services (IIS) version 7.0 running on Microsoft Windows Server 2008. IIS 7.0 significantly increases Web infrastructure security. For more information about IIS security-related topics, visit the following Microsoft Web site:
For more information about IIS 7.0, visit the following Microsoft Web site:
Expand all | Collapse all

On This Page


The purpose of this article is to explain how to install, use, and remove the IIS Security "What If" tool. The IIS Security "What If" tool is a Dynamic HTML (DHTML) utility that is designed to help in troubleshooting security issues with IIS.

Note This utility requires a DHTML-enabled browser and has been tested with Microsoft Internet Explorer versions 4.0 and 5.0. Although the tool works with most DHTML-enabled browsers, Microsoft cannot guarantee compatibility with third-party Web browsers. Therefore, this article has been written specifically for use with Internet Explorer.

Install the utility

The following file is available for download from the Microsoft Download Center:
Collapse this imageExpand this image
Download the Iisperms.exe package now. For more information about how to download Microsoft support files, click the following article number to view the article in the Microsoft Knowledge Base:
119591 How to obtain Microsoft support files from online services
Microsoft scanned this file for viruses. Microsoft used the most current virus-detection software that was available on the date that the file was posted. The file is stored on security-enhanced servers that help prevent any unauthorized changes to the file. Note Microsoft Product Support Services does not support the installation or use of this tool. It is provided "as-is" to help IIS users.
  1. Download Iisperms.exe and save it to your desktop.
  2. After the download is complete, double-click the Iisperms.exe file on your desktop.
  3. Specify a folder to extract the files to in the Unzip to Folder text box (for example, C:\Whatif).
  4. Click Unzip to install the files to the specified folder.
  5. Click OK after the files have been extracted, and then click Close

Use the utility

  1. Open My Computer, and then double-click the folder that you specified during the installation to locate the files.
  2. Double-click the IISPermissions.htm file.
  3. When the page opens in Internet Explorer, click to select the following options:
    Collapse this tableExpand this table
    BrowserThe Web browser that a client uses to browse an IIS site.
    Client OSThe operating system that the client Web browser is running on.
    ScenarioSpecifies wehther the client is browsing across the Internet or is located on an intranet with IIS.
    Web ServerThe IIS and operating system versions that are used on the server.
    Web Auth SchemeThe type of authentication that is used in this deployment.

  4. After you select these options, click Check. The graphics display is updated to show which computers and resources the client can reach based on the conditions that you specified.

Remove the utility

  1. Open My Computer, and then locate the folder that you specified during the installation.
  2. Right-click the folder that you specified during installation, click Delete, and then click Yes to confirm that you want to delete the folder.


Article ID: 229694 - Last Review: June 22, 2014 - Revision: 8.0
kbdownload kbgraphxlinkcritical kbhowtomaster KB229694

Give Feedback


Contact us for more help

Contact us for more help
Connect with Answer Desk for expert help.
Get more support from