?
Solved

HELP!!!  Need to add SSL cert to my SharePoint Foundation 2010

Posted on 2012-03-21
15
Medium Priority
?
577 Views
Last Modified: 2012-03-27
Hi, I am needing/wanting to add a SSL cert to my new SharePoint Foundation 2010 system.

I know how to install SSL cert to IIS, but never done it with SharePoint.

Could you provide step-by-steps or links in how to perform this probably simple task?

I have a SSL key from GoDaddy that I would like to add to it.


Thanks in advance.
0
Comment
Question by:rsnellman
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 8
  • 6
15 Comments
 

Assisted Solution

by:EyeOH
EyeOH earned 800 total points
ID: 37750621
0
 
LVL 38

Accepted Solution

by:
Justin Smith earned 1200 total points
ID: 37752069
You apply the SSL just like you would in any IIS site (install cert, create binding, etc).

Within Central Admin, you'll need to add an ALternate Access Mapping to your web application, for the https://  address.

That's about it.
0
 

Author Comment

by:rsnellman
ID: 37753277
OK.  So, I install the cert like I would a normal IIS site (within IIS Manager), correct?

Now the binding, I am not sure of.  Could you explain the steps involved further?


After all that is done, then I add a "Alternate Access Mapping to that specific web app (aka SharePoint - 80) and use https://servername for the address?

Does it need to be a Public URL or Internal URL?

Currently, I have users accessing it based on their login credentials.  And I am not wanting it to be seen by the world, so Internal URL is the way I wish to go, right?  However, these users need to access it from home (off-site) would that affect it any?

Thanks.
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 

Author Comment

by:rsnellman
ID: 37753294
The link somewhat helps, but it mentions being based off a setup utilizing SharePoint being configured for Forms based web app, which I don't think it is.

Does the link still apply in some fashion?

Sorry, I am new to SharePoint, have no official training and I am expected to make this work.  Got to love unrealistic bosses.


Thanks again.
0
 
LVL 38

Assisted Solution

by:Justin Smith
Justin Smith earned 1200 total points
ID: 37753295
Unless the URL is registered on public DNS, its not available to the public.

For the binding, you go to the site in IIS, and there is a bindings link on the right.  You click it and add one for port 443.

I can't tell you what URL to use, I don't know if it should be https://servername or not. All I know is, whatever URL you want your users to access the site as, it has to be added as an Alternate Access Mapping on the web app.

If you need remote assistance, I"m available.
0
 

Author Comment

by:rsnellman
ID: 37753552
OK, the process makes more sense now.

Currently, we were using a Server 2003 R2 x32 running IIS 6 & WSS 3.0 and users were tagging into the SharePoint off-site by using the server IP.  I don't mind that, but do want to secure those connections with a SSL cert.  So, now we have a GoDaddy SSL cert to apply to it.  So, whether they use the IP still or not, just want it secured.

So, could I create an Internal URL alternate access mapping of the web app (SharePoint - 80) and still allow off-site users to reach it via HTTPS?

Thanks again.
0
 
LVL 38

Expert Comment

by:Justin Smith
ID: 37753634
As long as the URL was available outside, either through VPN or public DNS, yes.
0
 

Author Comment

by:rsnellman
ID: 37753693
So, they could use HTTPS://IP    (The server IP) still then?  Awesome.


Thanks.
0
 

Author Comment

by:rsnellman
ID: 37753977
OK, now this is strange.  I followed the steps according to the link provided earlier and well, I guess I don't want a Public URL, because it didn't prompt me to authenticate, but rather just allowed me in under the System Account by default.

So, off to try it again, but this time a custom Internal URL.
0
 

Author Comment

by:rsnellman
ID: 37759086
Ok, so is there another way to add SSL cert to sharepoint?  Reason I ask is now with the SSL cert applied to sharepoint it looks like anyone can access it.  I do not want anyone but the users that are in the sharepoint to see anything or do anything on sharepoint without first logging into it.
0
 
LVL 38

Assisted Solution

by:Justin Smith
Justin Smith earned 1200 total points
ID: 37759128
Adding an SSL cert doesn't change security at all (unless you have configured zone specific user policies on the web app).
0
 
LVL 38

Expert Comment

by:Justin Smith
ID: 37759132
You guys could probably save a bunch of time, heart ache, and money by having a SharePoint consultant do the work you are trying to do between your two EE tickets. :)
0
 

Author Comment

by:rsnellman
ID: 37759158
OK.  Wasn't sure.  After all the strange things with this migration, I am not sure of anything anymore.  

Yes, consultants are a life saver and time saver, but unfortunantly it takes money where this only takes time and my bosses mindset is he is already paying me so he is not out of money that way.  It is funny & sad at the same time.  Oh, well.

It took over a year to get him to agree to subscribing to EE.  It is like he wants me to run everything, but give me no support to accomplish it.  Very frustrating at times.


Thanks again for all your help.  You my friend are a life saver.
0
 
LVL 38

Expert Comment

by:Justin Smith
ID: 37759198
I understand.  Most "bosses" don't realize they end up paying more money by having their people beat their heads against the wall for two weeks than they do bringing in a consultant for a day or two.
0
 

Author Comment

by:rsnellman
ID: 37759229
Amen to that.


Enjoy the day.
0

Featured Post

Does Your Cloud Backup Use Blockchain Technology?

Blockchain technology has already revolutionized finance thanks to Bitcoin. Now it's disrupting other areas, including the realm of data protection. Learn how blockchain is now being used to authenticate backup files and keep them safe from hackers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
This tutorial will show how to configure a single USB drive with a separate folder for each day of the week. This will allow each of the backups to be kept separate preventing the previous day’s backup from being overwritten. The USB drive must be s…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question