?
Solved

HTTP to HTTPS redirection for multiple URL's

Posted on 2008-11-17
7
Medium Priority
?
737 Views
Last Modified: 2012-05-05
Question for you guys that are the pro's:

I have 2 different URL's pointing to my exchanges OWA:

http://outlook.companyA.com and http://outlook.companyB.com

We want to force SSL and want to redirect both URL's to their HTTPS respective url.  I understand the process of a simple URL redirect through IIS however we want to preserve the URL's (ie. companyA and companyB) of the address so we don't ruffle feathers.  Thanks for any assistance you guys may be able to provide....
0
Comment
Question by:jriggy
  • 4
  • 3
7 Comments
 
LVL 5

Assisted Solution

by:Ghoti_AZ
Ghoti_AZ earned 2000 total points
ID: 22978344
Sounds like an HTTP 301/Redirect on each of the two URLs would be your best bet.  

301 Redirect Using IIS

In internet services manager, right click on the file or folder you wish to redirect.
Select the radio titled "a redirection to a URL".
Enter the page that the page will be redirected to.
Check "The exact url entered above" and the "A permanent redirection for this resource".
Click on 'Apply'.

In this case, you would redirect the folder corresponding with http://outlook.example.com to https://outlook.example.com.
0
 

Author Comment

by:jriggy
ID: 22978376
I was wondering whether a wilcard redirect would work, something like this:

http://outlook.*.com/Exchange/; https://outlook.$0.com/Exchange
0
 
LVL 5

Assisted Solution

by:Ghoti_AZ
Ghoti_AZ earned 2000 total points
ID: 22987885
Are you expecting to have a cornucopia of other hosted sites that will need the redirect?
0
Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

 

Author Comment

by:jriggy
ID: 22988644
NO, just the two for the foreseeable future...
0
 
LVL 5

Assisted Solution

by:Ghoti_AZ
Ghoti_AZ earned 2000 total points
ID: 22988704
In that case, setting up the two 301s would probably be wiser- you never know if some buffer overrun exploit using wildcards might come along.  In my opinion, it's better to not open any more doors than you have to.
0
 

Accepted Solution

by:
jriggy earned 0 total points
ID: 23005055
Found the answer myself:

To configure IIS to automatically redirect HTTP requests as HTTPS requests, follow these steps.

Important If the following conditions are true, you must mount and start the mailbox store before you can successfully complete these steps:

    * Microsoft Exchange 2000 Server or Microsoft Exchange Server 2003 is installed on a front-end server.
    * The mailbox store has been dismounted.

Note Follow these steps on an Exchange front-end server that communicates with a clustered Exchange back-end server.

   1. Create an Active Server Pages (ASP) Web page that contains the following code:

       <%

      If Request.ServerVariables("HTTPS")  = "off" Then
                                          Response.Redirect "https://" & Request.ServerVariables("HTTP_HOST") & "/Exchange"
      End If

            %>

   2. Name the Web page "Owahttps.asp".
   3. In Windows Explorer, create the Inetpub\Wwwroot\CustomErrors folder, and then save the Owahttps.asp Web page file to that folder.
   4. Start the IIS console.
          * In Windows NT Server 4.0 (IIS 4.0)

            Note Follow these steps if you are running Microsoft Exchange Server 5.5 Outlook Web Access on Windows NT 4.0 Server with the Windows NT 4.0 Option Pack. If you have an Exchange Server 5.5 mailbox server, and if the Outlook Web Access component is installed separately on a dedicated Web server, follow these steps on the Web server only.
               1. Click Start, point to Programs, point to Windows NT 4.0 Option Pack, point to Microsoft Internet Information Services, and then click Internet Services Manager.
               2. Expand Internet Information Server, expand Computer Name, and then expand the Web site that the Outlook Web Access users use to access their Exchange server. By default, this Web site will be the default Web site.
               3. Go to step 5.
          * In Windows 2000 Server (IIS 5.0)

            Note Follow these steps if you are running Exchange Server 5.5, Exchange 2000, or Exchange 2003 Outlook Web Access on Windows 2000 Server.
               1. Click Start, point to Programs, point to Administrative Tools, and then click Internet Services Manager.
               2. Double-click Computer Name to expand the computer object.
               3. Expand the Web site that the Outlook Web Access users use to access their Exchange server. By default, this Web site will be the default Web site.
               4. Go to step 5.
          * In Windows Server 2003 (IIS 6.0)

            Note Follow these steps if you are running Exchange 2003 Outlook Web Access on Windows Server 2003.
               1. Click Start, point to All Programs, point to Administrative Tools, and then click Internet Information Services (IIS) Manager.
               2. Expand Computer Name, and then expand Web Sites.
               3. Expand the Web site that your Outlook Web Access users use to access their Exchange server. By default, this Web site will be the default Web site.
               4. Go to step 5.
   5. Right-click the CustomErrors folder, and then click Properties.
   6. Under the Application settings section, click Create.

      Make sure that CustomErrors is displayed in the Application name box.

      Note For Exchange 2003 running on IIS 6.0, click ExchangeApplicationPool in the Application Pool list.
   7. Click the Documents tab, and then add the Owahttps.asp file to the Enable default content page. Move the Owahttps.asp file to the top of the list.
   8. Click the Directory Security tab, and then click Edit under Authentication and access control.
   9. Click to select Enable anonymous access, and then click OK.
  10. Under Secure communications, click Edit.
  11. Click to clear the Require secure channel (SSL) check box, and then click OK two times.
  12. Right-click the Exchange virtual directory, and then click Properties.
  13. Click the Custom Errors tab, and then double-click 403.4.
  14. In the Message Type list, click URL.
  15. In the URL box, type /CustomErrors/Owahttps.asp, and then click OK.
  16. Click the Directory Security tab.
  17. Under Secure Communications, click Edit.
  18. Click to select the Require secure channel (SSL) check box.

      Note If you want to require 128-bit encryption, click to select the Require 128-bit encryption check box.
  19. Click OK two times.
0
 

Author Comment

by:jriggy
ID: 23005086
no objections?
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Internet has made sending and receiving information online a breeze. But there is also the threat of unauthorized viewing, data tampering, and phoney messages. Surprisingly, a lot of business owners do not fully understand how to use security t…
A few solutions to a problem some of us have been having when trying to add Hostgator email accounts to Outlook 2016 (will probably work with Outlook 2013 as well).
This Experts Exchange video Micro Tutorial shows how to tell Microsoft Office that a word is NOT spelled correctly. Microsoft Office has a built-in, main dictionary that is shared by Office apps, including Excel, Outlook, PowerPoint, and Word. When …
To add imagery to an HTML email signature, you have two options available to you. You can either add a logo/image by embedding it directly into the signature or hosting it externally and linking to it. The vast majority of email clients display l…
Suggested Courses

615 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question