We have a couple of vm servers still running Windows Server 2003 R2 Enterprise 32bit.
There are many vulnerabilities and some of the ways of fixing the problem will be upgrading to a higher version of Windows Server and IIS.
(Plus Microsoft stopped supporting Server 2003.)
I think we will have to go from 2003 to 2008, 2008 to 2012, and then 2012 to 2016? Is this the only way? or there are other better approach to upgrade to newer version?
And I guess data and configuration will need to re-do manually?