(only 5 minutes)
 

How to Set Up an Internal Intranet

Deploying an intranet in a bank or credit union environment means meeting strict security, access control, and audit-readiness standards. This guide walks IT teams through setting up a secure, internal intranet (behind your firewall) using Microsoft IIS.

Prerequisites

Step #1: Install Web Server (IIS) Role on Windows Server

  1. Navigate to Server Manager, click on Dashboard on the left side, and then click Add roles and features on the right.
  2. Click the Next > button.
  3. Choose Role-based or feature-based installation and click the Next > button.
  4. Select appropriate server (usually the default) and click the Next > button.
  5. Select Web Server (IIS).
  6. Include management console if prompted, and click the Add Features button.
  7. Click the Next > button.
  8. Unless the SMTP Service is needed (manually sending email, see Azure App Registration to use Office 365), the default selection is sufficient (Latest .NET Framework Features, User Interfaces and Infrastructure, Windows PowerShell, and WoW64 Support).
  9. Click the Next > button.
  10. Expand Application Development by clicking the corresponding arrow icon, then select an option (often the newest ASP.NET option and/or ASP).
  11. Ensure Include management tools (if applicable) is checked, and click the Add Features button.
  12. If ISAPI Extensions isn't already checked by default, select it.
  13. Click the Install button.
  14. Once the process is complete, click the Close button.

Step #2: Configure Web Site

  1. In Server Manager - from the menu on the top right - click Tools and select Internet Information Services (IIS) Manager.
  2. Expand the server name on the left side (arrow icon), followed by Sites (arrow icon), then click Default Web Site.
  3. Some auditors and examiners suggest disabled the Default Web Site, so use your own discretion (if so, just right click on Sites to add a new one).
  4. After selecting your site, click the Advanced Settings link on the right, then make a note of the Application Pool (usually it's Default App Pool).
  5. Click Application Pool on the left side, select the Application Pool noted above, and click the Advanced Settings link on the right.
  6. If you plan to sync to Active Directory On-Premise, then Select the "Identity" option, and click the ... button to change, and - when prompted - When prompted, choose NetworkService from the Built-in account dropdown selection, and click the OK button.
  7. Make sure the Physical Path points to the location you desire; this is where your web site files go. The default is c:\inetpub\wwwroot\

Step #3: Configure SSL Certificate and Binding

Auditors and examiners most often suggest using https:// to access the site; Click here for SSL Certificate options.

Step #4: Redirect HTTP Traffic to HTTPS

To prevent http:// from accidentally being used, you can force https

Common Questions

Can I host an intranet internally without cloud services?
Yes. You can deploy SimplifyIT's intranet platform on-premise using IIS and SQL Server, completely behind your firewall. This setup is often preferred by banks and credit unions with strict internal control requirements.
Do I need Active Directory or Entra ID to run the intranet?
No, but integration is available. You can sync users from Active Directory or Entra ID to simplify login and permissions. It's optional, not required.
Will I need an SSL certificate even if the site is internal?
Yes. Auditors and regulators (FDIC/NCUA) strongly prefer SSL encryption, even on internal-only sites. It also helps prevent mixed content errors when embedding external content like maps or videos.
Can I restrict intranet access to certain users or devices?
Yes. You can enforce access by IP address, AD group, or role-based permissions inside the intranet platform. This is especially useful for vendor portals, HR content, or management-only files.
What kind of compliance features should my intranet include?
Look for audit trails, version control, content approvals, role-based access, and optional MFA integration. These support FDIC, NCUA, and internal audit expectations.
What should I set for the Application Pool identity?
If your intranet needs to sync with Active Directory, use the built-in 'NetworkService' account for the Application Pool. This allows secure access to domain resources without hardcoding credentials.

Security & Compliance Suggestions

Don't Want To Start from Scratch?

Reach out to our team or watch a demo to see a fully-deployed intranet in action.

 
 

What Examiners Want to See in Your Vendor Management Program

Published July 21, 2025

Examiners are looking closely at vendor management practices during audits. Learn what your bank needs to show to stay compliant, including risk assessments, SOC reports, and review cycles.

Proving It Happened: The Real Value of Intranet Visibility

Published July 18, 2025

Posting a policy isn't enough. Here's how financial institutions use intranet indicators and audit trails to ensure staff visibility, action, and compliance follow-through.

What Makes a Great Intranet for Financial Institutions?

Published July 17, 2025

The right intranet can transform internal communication and compliance for banks and credit unions. Here's what financial institutions should expect from a modern intranet platform.

Related Pages
 
SharePoint AlternativeDynamic FormsBank Intranet SoftwareCredit Union Intranet SoftwareBank Help DeskCredit Union Help DeskU.S. Based Banking IntranetData-Secure Intranet for Banks & Credit Unions
 
✦ trusted in banking since 2004 ✦