robertjmackay
asked on
SSL for dummies
I need to develop an VS2003 ASP.net - VB web application that uses SSL. This new application will be started from an existing application written in ????? that already uses SSL.
I am a newbie with SSL and not really sure where to begin, but I need to get up to speed quickly on this. I am very familiar with vb.net & ASP and programming languages. If need be, I can upgrade top VS2005
Help?
I am a newbie with SSL and not really sure where to begin, but I need to get up to speed quickly on this. I am very familiar with vb.net & ASP and programming languages. If need be, I can upgrade top VS2005
Help?
SSL is on the protocol level. You don't need to do anything from a programming sense to your application to support it.
ASKER
so how does my program know to use SSL or not?
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I think I just got it. I specify SSL or not when I add my application to the web server?
OK, The existing site uses SSL ... and I am assuming that using SSL requires a certificate (like I said - bit ignorant on all this stuff) Will I need another certificate?
OK, The existing site uses SSL ... and I am assuming that using SSL requires a certificate (like I said - bit ignorant on all this stuff) Will I need another certificate?
> I specify SSL or not when I add my application to the web server?
Yes.
> Will I need another certificate?
Technically speaking, no. That depends on whether the data of the current certificate (owner, domain, etc.) is suitable for the new application.
Yes.
> Will I need another certificate?
Technically speaking, no. That depends on whether the data of the current certificate (owner, domain, etc.) is suitable for the new application.
ASKER
And how do I find out if it is or is not? LOL keep in mind, this is all new to me
A valid current cert is all that is needed. Connect to the webserver via https and examine the certificate.
ASKER
When I log on to the existing application and look at the security report. A window pops up. So if I am assuming correctly, providing my application resides on that domain, SSL will be in effect?
Verisign Class 3 Public Primary CA
has identified this site as
appserv.domain.ca
This connection to the server is encrypted
Verisign Class 3 Public Primary CA
has identified this site as
appserv.domain.ca
This connection to the server is encrypted
> So if I am assuming correctly, providing my application resides
> on that domain, SSL will be in effect?
The way I understand your setting and question: yes.
However, a "domain" can host multiple web-applications, SSL and non-SSL at the same time. Again, this has nothing to do with your application, but with the way the IIS (or other web server) is set up.
If you plug your application into the web server in the same way as the current application is, then you will be fine. You will be using the same SSL-configuration and SSL-certificate as the current application.
> on that domain, SSL will be in effect?
The way I understand your setting and question: yes.
However, a "domain" can host multiple web-applications, SSL and non-SSL at the same time. Again, this has nothing to do with your application, but with the way the IIS (or other web server) is set up.
If you plug your application into the web server in the same way as the current application is, then you will be fine. You will be using the same SSL-configuration and SSL-certificate as the current application.
ASKER
I split the 500 points .. .basically 100 points for each response .. .excellent
thanks a bunch
thanks a bunch