Solved

Publishing a site that uses http and https

Posted on 2010-11-30
5
654 Views
Last Modified: 2012-06-27
We have a site sitting behind TMG thats http and we're adding https becuase of a store.

We purchased Netsol's NSprotect secure (extended valiation) cert from network solutions and I have the cert installed on the website. I'm not sure what cert to install on the TMG box so I can enable https on the web listener to allow https://www.ourwebsite.com.

Thanks
0
Comment
Question by:matt_helm
5 Comments
 
LVL 6

Accepted Solution

by:
malkaj01 earned 500 total points
ID: 34239326
It actually depends on who will handle the SSL encryption overload.

You have two options:

1) Install the cert on your web server and foward HTTPS traffic from TMG.

2) Install the cert on your TMG and relay it to your web server.
0
 

Author Comment

by:matt_helm
ID: 34239384
I figured out the fowarding HTTPS traffic to the IIS server and got it to work.

I just didn't know if this was the correct way. When you go to enable https on the web listener it won't let you unless you have a cert installed.

So.. thats why i'm a bit confused.

Thanks
0
 

Author Comment

by:matt_helm
ID: 34240360
Can you explain how to relay the cert to my server if i install it on TMG? Apparantly we're having issues with Webdav running like crap now.
0
 
LVL 23

Expert Comment

by:Suliman Abu Kharroub
ID: 34241599
If you dont want to install the certificate on the TMG, then try to purplish the server as non-web server ( non-web server publish rule) using the https protocol.
0
 
LVL 10

Expert Comment

by:simonlimon
ID: 34242936
well you could try installing the certificate to the tmg and publish the website through the ssl listener as a website.

the connection would be ssl secure from the outside client to the tmg. but not from tmg to the webserver.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

There are three types of ISA client that can be configured - these can be individual clients or multiples of a client on each PC or server SecureNAT. A SecureNAT client for ISA server is a client machine, work station or server, that has its defa…
There are several problems reported according slow link speeds or poor performance in TMG 2010, UAG 2010 or ISA 2006. I want to collect here some of the common issues together to give a brief overview what can be the reason. Nevertheless, not all of…
Internet Business Fax to Email Made Easy - With eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…
Hi friends,  in this video  I'll show you how new windows 10 user can learn the using of windows 10. Thank you.

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

15 Experts available now in Live!

Get 1:1 Help Now