Solved

Publishing a site that uses http and https

Posted on 2010-11-30
5
660 Views
Last Modified: 2012-06-27
We have a site sitting behind TMG thats http and we're adding https becuase of a store.

We purchased Netsol's NSprotect secure (extended valiation) cert from network solutions and I have the cert installed on the website. I'm not sure what cert to install on the TMG box so I can enable https on the web listener to allow https://www.ourwebsite.com.

Thanks
0
Comment
Question by:matt_helm
5 Comments
 
LVL 6

Accepted Solution

by:
malkaj01 earned 500 total points
ID: 34239326
It actually depends on who will handle the SSL encryption overload.

You have two options:

1) Install the cert on your web server and foward HTTPS traffic from TMG.

2) Install the cert on your TMG and relay it to your web server.
0
 

Author Comment

by:matt_helm
ID: 34239384
I figured out the fowarding HTTPS traffic to the IIS server and got it to work.

I just didn't know if this was the correct way. When you go to enable https on the web listener it won't let you unless you have a cert installed.

So.. thats why i'm a bit confused.

Thanks
0
 

Author Comment

by:matt_helm
ID: 34240360
Can you explain how to relay the cert to my server if i install it on TMG? Apparantly we're having issues with Webdav running like crap now.
0
 
LVL 23

Expert Comment

by:Suliman Abu Kharroub
ID: 34241599
If you dont want to install the certificate on the TMG, then try to purplish the server as non-web server ( non-web server publish rule) using the https protocol.
0
 
LVL 10

Expert Comment

by:simonlimon
ID: 34242936
well you could try installing the certificate to the tmg and publish the website through the ssl listener as a website.

the connection would be ssl secure from the outside client to the tmg. but not from tmg to the webserver.
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
A ISA2006 Replacement suggestion 1 333
MS Direct Access 3 653
VPN setup through TMG 1 414
Lync 2013 Test Connectivity error 34 12,480
There are three types of ISA client that can be configured - these can be individual clients or multiples of a client on each PC or server SecureNAT. A SecureNAT client for ISA server is a client machine, work station or server, that has its defa…
Common practice undertaken by most system administrators is to document the configurations and final solutions of anything performed by them for their future use and reference. So here I am going to explain how to export ISA Server 2004 Firewall pol…
I've attached the XLSM Excel spreadsheet I used in the video and also text files containing the macros used below. https://filedb.experts-exchange.com/incoming/2017/03_w12/1151775/Permutations.txt https://filedb.experts-exchange.com/incoming/201…

749 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question