Full Stack LAMP - MEAN Developer, Python developer. Certified Azure Developer. Freelance programmer/consultant/trainer.

IIS 10: Remove server response header

In this post, you will learn to remove the server: Microsoft-IIS/10.0 response header. By removing unnecessary headers from the response we can reduce the quantity of data transmitted from the web server back to the server. and It makes it a bit harder for attackers to determine the software that is powering the web server.

You can see the server header in the following image

Let’s use Set-WebConfigurationProperty to disable the server response header from the IIS. Open your PowerShell and run the following command.

    Set-WebConfigurationProperty -pspath 'MACHINE/WEBROOT/APPHOST' -filter "system.webServer/security/requestFiltering" -name "removeServerHeader" -value "True"

    After running the above command your response header should be similar to below without the server header.

    I hope you like this Post, Please feel free to comment below, your suggestion and problems if you face - we are here to solve your problems.

    0 0 votes
    Article Rating
    Notify of

    Most Voted
    Newest Oldest
    Inline Feedbacks
    View all comments