Setting up Web Deploy in iis8 Windows Server 2012

Part 1 Setup IIS.

1. Install ASP.NET, and make sure its registered with IIS, using Turn Windows Features On/Off Development extensibility
2. Install Web Deploy 3+
3. Open port 8172 on network (for management service)
4. IIS Management Service - apply settings, and make sure “Windows Credentials or IIS Manager Users”IIS Manager Users - add user(s) for deploymentManagement Service Delegation and Apply rule like below

On IIS website:

IIS Manager Permissions –> Allow User –> Select IIS Manager User created in step 2 to allow web deploy, right click –> Deploy –> Configure Web Deploy Publishing –> Select IIS Manager user from step 2 for publishing permissions, and set URL for publishing server connection and click Setup

Web Deploy Error Codes http://www.iis.net/learn/publish/troubleshooting-web-deploy/web-deploy-error-codes

Management Service Delegation Rule see: http://www.iis.net/learn/publish/using-web-deploy/configure-the-web-deployment-handler

PART 2 – CREATE DELEGATION RULES FOR WEB DEPLOY USERS

1.  If you have not yet done so, download the Web Deployment tool and install it on the Web server.
2.  Create delegation rules for the Web Deploy functionality (providers) that you want to allow users to have. To allow a user to deploy applications and content to his or her Web site:

a. Open IIS Manager. b. Select the Server node. c. In Features View of the Server, double-click the Management Service Delegation icon.

http://i1.iis.net/media/7181300/configure-the-web-deployment-handler-516-Management_Service_Delegation.png?cdn_id=2013-07-03-001 d. In the right-hand Actions pane, click Add Rule… 

http://i2.iis.net/media/7181294/configure-the-web-deployment-handler-516-Management_Service_Delegation2.png?cdn_id=2013-07-03-001 e. Select the Deploy Applications with Content rule template. This template creates a rule that allows any WMSVC authorized user to use the Web Deploy contentPath and iisApp providers to deploy applications to his or her user scope.

http://i2.iis.net/media/7181306/configure-the-web-deployment-handler-516-Deployment_Template.png?cdn_id=2013-07-03-001 f. Click OK to open the template. g. Click OK to create the rule. h. In the Add User to Rule dialog box, type an asterisk ( * ). This will allow each user to deploy applications to his or her user scope.

NOTE: If you want to perform admin-only synchronization, go to the Management Service Delegation page. In the Actionspane, click Edit Feature Settings, and then select Allow administrators to bypass rules.

Mark Folders as Applications Rule

1.  To allow each user to create an application within his or her Web site: a. Click Add Rule…  b. Select the Mark Folders as Applications rule template. This template allows all WMSVC authorized users to use the Web Deploy createApp provider to create applications within their user scope. The applications will inherit all settings from the parent, including the application pool.  c. Click OK to open the template. d. In the RunAs section, select SpecificUser for the Identity Type, and the click the Set… button to specify a user account that will perform this operation. In order for this rule to work, the rule must run as a user that has access to write to the applicationHost.config file. It is recommended that you create an account (for example, “CreateAppUser”) that is not in the Administrators group and only grant it the minimum required permissions. To do this:  Create a user account. Grant read permission to %windir%\system32\inetsrv\config. Grant modify permission to %windir%\system32\inetsrv\config\applicationHost.config.

2.  In the Add User to Rule dialog box, type an asterisk ( * ). This will allow each user to create applications within his or her Web site. Deploy Databases Rule

3.  To allow users to deploy databases to their Web sites: a. Click Add Rule …  b. Select the Deploy Databases rule template. This template allows any WMSVC authorized users (as set in Part 1) to deploy databases to SQL database servers.  c. Click OK to open the template. d. Add a path to authorize, such as Server=Server1 to allow anyone to deploy to this server using their SQL credentials, or Server=Server1;Database={userName}_db1 to restrict to specific databases that match their username. e. Click OK to create the rule.

4.  In the Add User to Rule dialog box, type an asterisk ( * ). This will allow each user to deploy databases to his or her Web site. Set Permissions Rule

5.  To allow each user to deploy applications and content to his or her Web site: a. Click Select Rule Template…  b. Select the Set Permissions rule template. This template allows any WMSVC authorized user to set ACLs on the file system.  c. Click OK to open the template. d. Click OK to create the rule.
6.  In the Add User to Rule dialog box, type an asterisk ( * ). This will allow each user to deploy applications and content within his or her Web site.