Solved

Publishing a site that uses http and https

Posted on 2010-11-30
5
656 Views
Last Modified: 2012-06-27
We have a site sitting behind TMG thats http and we're adding https becuase of a store.

We purchased Netsol's NSprotect secure (extended valiation) cert from network solutions and I have the cert installed on the website. I'm not sure what cert to install on the TMG box so I can enable https on the web listener to allow https://www.ourwebsite.com.

Thanks
0
Comment
Question by:matt_helm
5 Comments
 
LVL 6

Accepted Solution

by:
malkaj01 earned 500 total points
ID: 34239326
It actually depends on who will handle the SSL encryption overload.

You have two options:

1) Install the cert on your web server and foward HTTPS traffic from TMG.

2) Install the cert on your TMG and relay it to your web server.
0
 

Author Comment

by:matt_helm
ID: 34239384
I figured out the fowarding HTTPS traffic to the IIS server and got it to work.

I just didn't know if this was the correct way. When you go to enable https on the web listener it won't let you unless you have a cert installed.

So.. thats why i'm a bit confused.

Thanks
0
 

Author Comment

by:matt_helm
ID: 34240360
Can you explain how to relay the cert to my server if i install it on TMG? Apparantly we're having issues with Webdav running like crap now.
0
 
LVL 23

Expert Comment

by:Suliman Abu Kharroub
ID: 34241599
If you dont want to install the certificate on the TMG, then try to purplish the server as non-web server ( non-web server publish rule) using the https protocol.
0
 
LVL 10

Expert Comment

by:simonlimon
ID: 34242936
well you could try installing the certificate to the tmg and publish the website through the ssl listener as a website.

the connection would be ssl secure from the outside client to the tmg. but not from tmg to the webserver.
0

Featured Post

Courses: Start Training Online With Pros, Today

Brush up on the basics or master the advanced techniques required to earn essential industry certifications, with Courses. Enroll in a course and start learning today. Training topics range from Android App Dev to the Xen Virtualization Platform.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
EMAIL BANNER 8 31
Forefront TMG 2010 Firewall Replacement 3 1,171
Exchange 2010 OWA 403 error 7 728
I can ping hostname on our internal network but cannot ping Internal Ip addresses 11 91
There are three types of ISA client that can be configured - these can be individual clients or multiples of a client on each PC or server SecureNAT. A SecureNAT client for ISA server is a client machine, work station or server, that has its defa…
So the following errors occurs in 2 ways that I am aware of at this stage, and you receive one of the following error messages: ERROR 1. When trying to save a rule: No Web listener is specified for the Web publishing rule Autodiscovery Publishin…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

785 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question