How to setup Webmail, Remote Administration, ActiveSync, CalDav, CardDav, AutoDiscover, MDDP, Webmail API, and XML API services in IIS

This article covers how to setup Webmail, Remote Administration, ActiveSync, CalDAV, CardDAV, AutoDiscover, MDDP, Webmail API, XML API, to run under IIS instead of MDaemon's own built-in webservers.

 

1. Install the Web Server (IIS) Role with ISAPI Extensions on your Window's operating system.
2. Install Microsoft's IIS URL Rewrite component.
   1. Navigate to http://www.iis.net/download/URLRewrite in a web browser.
   2. Run the installer to install the extension.
3. Open the IIS Manager 
   
   1. Click Start
   2. Click All Programs
   3. Click Administrative Tools
   4. Click Internet Information Services (IIS) Manager
4. On the Connections pane, expand the [Machine_name] node.
   1. Right click on Sites.
   2. Click Add Web Site.
      
      
   3. Enter a Site name (i.e. Webmail). This will also create an Application Pool by the same name as the web site.
   4. Click the browse button (the button with '...') by Physical path and browse to the 'MDaemon\WorldClient\HTML' directory
   5. Set up the Type, IP Address, and port bindings as desired in the Binding section.
      • A basic configuration will leave the IP address as All Unassigned unless a specific configuration is required.
      • The Host name can be left blank unless a specific host name is required. 
   6. Click OK
      
      

Add HTTPS and a valid certificate to the site bindings

1. Select Webmail site from the Connections page.
2. In the Actions menu on the right, select Bindings... under the Edit Site section.
3. Click Add...
4. Select https in the Type drop down box.
5. Enter 443 on the Port (or enter the desired HTTPS port).
   • A basic configuration will leave the IP address as All Unassigned unless a specific configuration is required.
   • The Host name can be left blank unless a specific host name is required. 
6. Choose an SSL certificate in the SSL Certificate drop box.
   
7. Click OK to add the site binding.
8. Click Close to close the Site Bindings.

Verify the Webmail Default Document

1. 1. Click on the Webmail site in the Connections pane. 
   2. Double click on Default Document 
      
   3. Verify the default document is worldclient.dll.
   4. Remove any existing Default Documents other than worldclient.dll.
   5. Click Add and enter 'worldclient.dll' if the entry does exist
      
2. Edit website feature permissions 
   1. Click on the Webmail site in the Connections pane 
   2. Double click on Handler Mappings 
      
   3. Click Edit Feature Permissions on the Actions pane. 
      
   4. Verify the boxes for Read and Script are selected (checked), and select (check) the box for Execute
   5. Click OK 
      
      
      

Add CJS file name extension to MIME Types

1. Select the Webmail site.
2. Double click MIME Types
3. Click Add... on the Actions menu.
4. Enter .cjs in the File name extension textbox.
5. Enter text/javascript in the MIME type textbox.
   
6. Click Ok
   
   

Edit the Default Document of the Webmail folder

1. Select the Webmail folder (not to be confused with the Webmail site name in this example) 
2. Double click Default Document
3. Select the WorldClient.dll default document
4. Click Remove
   
   
5. Click Add
6. Enter index.html
7. Click OK
   

Increase the Maximum Query String to 3072 bytes

1. Select the Webmail site
2. Double click on Request Filtering.
   
3. On the Actions menu on the right, select Edit Feature Settings...
4. Set Maximum Query String (Bytes) to 3072.
   
5. Click OK

Add Webmail API Handler Mapping to IIS

1. Select the Webmail website
2. Double click on Handler Mappings
3. Select Add Script Map...
   
   
4. Enter WorldClientAPI in the Request Path
5. The Executable Path is the worldclient.dll in the \MDaemon\WorldClient\HTML directory
6. Enter WorldClientAPI for the name
7. Click Request Restrictions
   
   
8. Remove the check mark in the Invoke handler only if request is mapped to:
   
9. Select the Verbs tab and verify All verbs is selected
   
10. Select the Access tab and select Execute
    
    
11. Click OK
    
12. Click Yes
    

Add XML API Handler Mapping to IIS

1. Select the Webmail website
2. Double click on Handler Mappings
3. Select Add Script Map...
   
   
4. Enter MDMgmtws in the Request Path
5. The Executable Path is the MDMgmtws.dll in the \MDaemon\ISAPI\MDMgmtWS directory
6. Enter XMLAPI for the name
   
7. Click Request Restrictions
   
8. Remove the check mark in the Invoke handler only if request is mapped to:
   
9. Select the Verbs tab and verify All verbs is selected
   
10. Select the Access tab and select Execute
    
    
11. Click OK
    
12. Click Yes
    

Create the URL Rewrite Rule for Webmail Pro theme

1. Select the Webmail folder (not to be confused with the Webmail site name in this example)
2. Double Click URL Rewrite
3. Select Add Rules from the Actions menu
4. Select Blank rule
   
5. Click OK
6. Enter a name for the Inbound Rule
7. Select Matches the Pattern in the Requested URL
8. Select Regular Expressions in the Using drop down
9. Enter .* in the Pattern text box
   
10. Expand the Conditions section
11. Click Add in the Condition section
12. Select Is Not a Directory in the Check if input string section
13. This changes the Condition to {REQUEST_FILENAME}
14. Click OK
15. Click Add in the Condition section
16. Select Is Not a File in the Check if input string section
17. This changes the Condition to {REQUEST_FILENAME}
18. Click OK
19. Select Rewrite for the Action Type
20. Enter index.html in the Action Properties
21. Check Append query string
22. Check Log rewritten URL
    
23. Click Apply to apply the Inbound rule

Add the ActiveSync Handler Mapping to IIS

1. Select the Webmail site from the Connections panel.
2. Double click Handler Mappings
3. Click on 'Add Script Map...' 
   
4. In the Request Path field, enter 'MDAirSync.dll'
5. Under Executable, click the browse button (the button with '...')
6. Browse to 'MDaemon\WorldClient\HTML\MDAirSync.dll' (on the C:\ drive by default)
7. In the Name field, enter 'MDAirSync.dll'
8. Click the Request Restrictions button 
   
9. Under the Access tab, select Execute
   
   
10. Click OK
11. Click OK 
12. Click Yes on the dialog that asks 'Do you want to allow this ISAPI extension...'
    
    

Add the AutoDiscover Handler Mapping to IIS

1. Select the Webmail site from the Connections panel.
2. Double click Handler Mappings
3. Click on 'Add Script Map...' 
4. In the Request Path field, enter '/autodiscover/autodiscover.xml'
5. Under Executable, click the browse button (the button with '...')
6. Browse to 'MDaemon\WorldClient\HTML\MDAutoDiscover.dll' (on the C:\ drive by default)
7. In the Name field, enter 'MDAutoDiscover'
8. Click the Request Restrictions button
    
9. Under the Access tab, select Execute
   
   
10. Click OK
11. Click OK 
12. Click Yes on the dialog that asks 'Do you want to allow this ISAPI extension...'

Add the MDDP Handler Mapping to IIS

1. On the Handler Mappings Actions menu on the right, click on 'Add Script Map...' 
2. In the Request Path field, enter MDDP.
3. Under Executable, click the browse button (the button with '...')
4. Browse to '\MDaemon\ISAPI\MDDP.dll' (on the C:\ drive by default)
5. In the Name field, enter 'MDDP'
   
   
6. Click the Request Restrictions button
7. Under the Access tab, select Execute
8. Click OK
9. Click OK 
10. Click Yes on the dialog that asks 'Do you want to allow this ISAPI extension...'

Add the CalDAV Handler Mapping to IIS

1. Select the Webmail site from the Connections panel.
2. Double click Handler Mappings
3. Click Add Script Map...
4. Enter /.well-known/caldav in the Request Path textbox.
5. Enter C:\MDaemon\WebDAV\MDWebDAV.dll in the Executable textbox.
   (Modify the directory path if MDaemon was not installed on the C:\ directory)
6. Enter a name in the Name field; i.e MDCalDav.
   
7. Click Request Restrictions
8. Select the Verbs Tab and verify All Verbs is selected.
9. Select the Access Tab and choose Execute
   
10. Click OK
11. Click OK
12. Click Yes to allow the ISAPI extension.
    
    

Add the CardDav Handler Mapping to IIS

1. Select the Webmail site from the Connections panel.
2. Double click Handler Mappings
3. Click Add Script Map...
4. Enter /.well-known/carddav in the Request Path textbox.
5. Enter C:\MDaemon\WebDAV\MDWebDAV.dll in the Executable textbox.
   (Modify the directory path if MDaemon was not installed on the C:\ directory)
6. Enter a name in the Name field; i.e MDCardDav.
   
7. Click Request Restrictions
8. Select the Verbs Tab and verify All Verbs is selected.
9. Select the Access Tab and choose Execute
   
10. Click OK
11. Click OK
12. Click Yes to allow the ISAPI extension.

Add the MDWebvDAV Handler Mapping to IIS

1. Select the Webmail site from the Connections panel.
2. Double click Handler Mappings
3. Click Add Script Map...
4. Enter webdav in the Request Path textbox.
5. Enter C:\MDaemon\WebDAV\MDWebDAV.dll in the Executable textbox.
   (Modify the directory path if MDaemon was not installed on the C:\ directory)
6. Enter a name in the Name field; i.e MDWebDav.
   
7. Click Request Restrictions
8. Select the Verbs Tab and verify All Verbs is selected.
9. Select the Access Tab and choose Execute
   
10. Click OK
11. Click OK
12. Click Yes to allow the ISAPI extension.

Create an MDaemon Remote Administration (MDRA) Application Pool.

1. Right click on Application Pools.
2. Click Add Application Pool
3. Enter MDRA in the Name text box.
4. Select Classic in the Managed pipeline mode drop down.
   
5. Click OK

Add Remote Administration as an application in IIS.

1. Right click on the Webmail application name.
2. Select Add Application...
3. Enter MDRA in the Alias text box.
4. Click Select next to Application Pool and choose MDRA.
5. Enter C:\MDaemon\WebAdmin\Templates in the Physical Path text box.
   (Modify the directory path if MDaemon was not installed on the C:\ directory)
   
6. Click OK

Verify/Edit the Default Document for Remote Administration

1. Click on the MDRA application in the Connections pane.
2. Double click on Default Document.
   
3. Remove any existing Default Documents other than login.wdm.
4. Click Add
5. Enter login.wdm
   
6. Click Ok

Add Remote Administration Handler Mapping to IIS

1. Select the Webmail site from the Connections panel.
2. Double click Handler Mappings
3. Click Add Script Map...
4. Enter *.wdm in the Request Path textbox.
5. Enter C:\MDaemon\WebAdmin\Templates\WebAdmin.dll in the Executable textbox.
   (Modify the directory path if MDaemon was not installed on the C:\ directory)
6. Enter MDRA in the Name field.
   
7. Click Request Restrictions
8. Select the Verbs Tab and verify All Verbs is selected.
9. Select the Access Tab and choose Execute
   
10. Click OK
11. Click OK
12. Click Yes to allow the ISAPI extension.

Configure the Webmail Application Pool for 64-bit

1. Double-click on Application Pools on the Connections pane
2. Select the Webmail application pool 
3. On the Actions pane, click Advanced Settings... 
   
   
4. In the General section, locate 'Enable 32-bit Applications'
5. Select the field and choose False 
6. In the Process Model section, set Identity to Network Service
7. Click OK
   
   

Enable and configure HTTP Strict Transport Security (HSTS) in IIS 10.0 and above

1. Select the Webmail Site
2. Click HSTS on the right panel under Configure (IIS 10.0 and above)
   
3. Click Enable
4. Enter 2592000 for the Max-Age value (30 days).
   
5. Click OK

 

 

Create Additional HTTP Response Headers

1. Select the Webmail Site
2. Double click HTTP Response Headers
   
3. Click Add
4. Name - Content-Security-Policy
   Value -  img-src * data: blob:;base-uri 'self';worker-src 'self' blob:;manifest-src 'self';frame-src 'self' data:
5. Click OK
6. Repeat the same steps to add the following response headers:
   • Name - Referrer-Policy
     Value - same-origin
   • Name - X-Frame-Options
     Value - sameorigin
   • Name - X-XSS-Protection
     Value - 1

Grant the 'Network Service' account Full Control of the MDaemon LogFiles registry entry

1. Open the Windows Registry (regedit).
2. Navigate to HKLM:\SOFTWARE\Alt-N Technologies\MDaemon\LogFiles
3. Right click on LogFiles
4. Select Permissions
   
5. Click Add
6. Enter Network Service for the object name.
7. Click Check Name to verify the NETWORK SERVICE name is selected.
   
8. Click OK
9. Select Network Service 
10. Click Full Control
    
11. Click OK

Update the NTFS permissions of the MDaemon directory

1. Open Windows Explorer
2. Navigate to the MDaemon directory (by default, 'C:\MDaemon') 
3. Right click on the MDaemon directory
4. Choose Properties 
   
5. Choose the Security tab
6. Click Edit 
   
7. Click Add 
8. Type 'IUSR'
9. Click OK to close the Select Users or Groups dialog 
   
10. Enable Full control under Allow for IUSR 
    
11. Click Add... 
12. Type 'Network Service'
13. Click OK to close the Select Users or Groups dialog 
    
14. Enable Full Control under Allow for Network Service
15. Click OK to close the Permissions for MDaemon dialog and wait for the changes to take effect 
    
16. Click OK to close the MDaemon Properties dialog 
    
    

Start the Webmail site configured in IIS

1. Open the IIS Manager
2. Right click on the Webmail site.
3. Mouse over Manage Website.
4. Select Start
   
   

Switch from MDaemon's built-in Webmail webserver to IIS

1. Open the MDaemon configuration session. 
2. Select Setup
3. Select Web & IM Services... 
4. Select Web Server
5. Select Webmail runs using external webserver (IIS, Apache, etc)
   
   
6. Click OK

Switch from MDaemon's built-in Remote Administration webserver to IIS

1. Open the MDaemon configuration session. 
2. Select Web & IM Services
3. Expand Remote Administration
4. Select Web Server
5. Select Remote Administration runs using external webserver (IIS, Apache, etc)
   
6. Click Ok