Solved

SSL Implementation

Posted on 2003-12-09
4
756 Views
Last Modified: 2010-04-11
How to set up an existing http site to work on SSL .
What are the different steps involved . Maybe following questions will help me understand the implementation of SSL

(1) Can we add SSL to the web?
(2) How do we add SSL to our web?
(3) Since our servers are managed by a third party vendor , I need to know what to ask them to do. (4) How it will impact or website.
(5) Do we need to provide a digital certificate? If so , where do we get one.


Best Regards
Amit
0
Comment
Question by:amitjk
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 18

Expert Comment

by:chicagoan
ID: 9908345
(1) Can we add SSL to the web?
probably
(2) How do we add SSL to our web?
You'll have to have a name registered in DNS, submit to a business check or be registered with Dun and Bradstreet or the like, and give somebody some money.

Apache: http://rocky.uta.edu/doran/vugm2001/
IIS: http://www.instantssl.com/ssl-certificate-support/cert_installation/iis_ssl_certificate_5x.html

(3) Since our servers are managed by a third party vendor , I need to know what to ask them to do.
If you have a co-located server see 5. If you have a managed web service just call and ask them.
(4) How it will impact or website.
More processor overhead for ssl delivered pages.
(5) Do we need to provide a digital certificate?
An SSL certificate is a digital document that says the Certificate Authority says the web site belongs to you. They will provide the necessary keys. If this is a shared server at a hosting company, they probably have a shared certificate you can use.
(6) If so , where do we get one.
http://www.sslreview.com/content/index.html

0
 
LVL 5

Expert Comment

by:Insolence
ID: 9940942
Lemme try that again for you...

#1: Yes, most likely
#2: Since you're not the actual host, you don't do anything except ask your host to change your website to SSL.  Unless they give you some sort of web-based interface to manage your own website.  Then typically, you can do it on your own
#3: Call up your host and say... "Can I change my website to use a secure connection since I have private data that will be tranferred back and forth?"  Something along those lines.
#4: It will not impact your website directly.  Users WILL have to go to https:// instead of http unless you forward them automatically to https or something.  This you can discuss and setup most likely with your host.
#5: No, in almost no cases do you need to provide a digital certificate.  Most hosting services provide one, or you can ask them to make you a self-signed certificate.  This isn't the most secure, but it's free.  If you DO need one, or want one for some reason from a trusted company, be ready to fork out good money yearly.  That link provided above should suffice, it shows and reviews the major SSL certificate providers.

Just providing a different wording... imho.  =)

 - Insolence
0
 
LVL 18

Expert Comment

by:chicagoan
ID: 9941023
wish I'd said that...
0
 
LVL 5

Accepted Solution

by:
Insolence earned 75 total points
ID: 9944018
lol, chicagoan, what you said sounded french to me man.  I've done tech support for a long time, and if I said what you said above to any normal human being, they would be all "huh!?!".  And well, you didn't touch on the real answers IMHO.  No offense...
0

Featured Post

Transaction Monitoring Vs. Real User Monitoring

Synthetic Transaction Monitoring Vs. Real User Monitoring: When To Use Each Approach? In this article, we will discuss two major monitoring approaches: Synthetic Transaction and Real User Monitoring.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Keystroke loggers have been around for a very long time. While the threat is old, some of the remedies are new!
A 2007 NCSA Cyber Security survey revealed that a mere 4% of the population has a full understanding of firewalls. As business owner, you should be part of that 4% that has a full understanding.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question