Solved

ISS SSL Configuraiton

Posted on 2007-11-29
7
615 Views
Last Modified: 2012-05-05
Hi,

I wanna enable SSL within a site for just a form submitting. Think like my domain is "www.xxx.com " while surfing this site
SSL is not enabled but within a site when i submit a form i want to enable SSL is that possible ??

Regards,
0
Comment
Question by:pazwant
  • 3
  • 2
7 Comments
 
LVL 11

Accepted Solution

by:
Sven earned 125 total points
ID: 20380447
You have to get a ssl certificate by your web hoster (if it is part of your contract) or by a organization like VeriSign. The details of how to request and receive a ssl certificate a printed on the websites of these organizations like here:
http://www.verisign.com/support/ssl-certificates-support/install-ssl-certificate.html

You need to enable port 43 for your website. I do not think you can restrict ssl per page, so a call of https:// from a user via browser is allways served by ssl. You could only redirect per script to non-ssl script.
0
 
LVL 1

Author Comment

by:pazwant
ID: 20380484
I mean , is it possible to open a page with http://www.xxx.com/index.htm and then shift to
https://www.xxx.com/login.htm . During this changing do the users get any message from browser
except accepting SSL certificate ?
0
 
LVL 11

Expert Comment

by:Sven
ID: 20380491
Normally there is not even a message that they are changing to ssl, if the certificate is valid. To submit a form per ssl you only need to add the absolute url with domain and https:// to the action of form:

<form action="https://www.xxx.com/login.htm" method="POST" name="LoginForm">

Open in new window

0
 
LVL 1

Author Comment

by:pazwant
ID: 20380528
Oki but what about if the user call https://www.xxx.com , i just want SSL certificate valid for login.htm. Is that possible on IIS just giving a directory for SSL enabled?
0
 
LVL 11

Expert Comment

by:Sven
ID: 20380546
The only way I can think of, is to create a virtual directory within your web applications root. For this virtual directory you can define a ssl certificate but you should NOT define the virtual directory as own application because then you could definitly not share session across the web root and the virtual directory. Put the login script within this virtual directory and try it out!

I never tried that myself. I do not know if session state is really shared within root and virtual directory. Also I do not know if the SSL certificate is working within the directory. But it's worth a try I think.
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Logparser is the smartest tool I have ever used in parsing IIS log files and there are many interesting things I wanted to share with everyone one of the  real-world  scenario from my current project. Let's get started with  scenario - How do w…
First of all, clustering IIS is something you should rarely consider doing. In almost all cases, Microsoft Network Load Balancing (NLB) (http://technet.microsoft.com/en-us/library/cc758834(WS.10).aspx) is a much better solution when you need to p…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

808 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question