Solved

HELP!!!  Need to add SSL cert to my SharePoint Foundation 2010

Posted on 2012-03-21
15
541 Views
Last Modified: 2012-03-27
Hi, I am needing/wanting to add a SSL cert to my new SharePoint Foundation 2010 system.

I know how to install SSL cert to IIS, but never done it with SharePoint.

Could you provide step-by-steps or links in how to perform this probably simple task?

I have a SSL key from GoDaddy that I would like to add to it.


Thanks in advance.
0
Comment
Question by:rsnellman
  • 8
  • 6
15 Comments
 

Assisted Solution

by:EyeOH
EyeOH earned 200 total points
ID: 37750621
0
 
LVL 38

Accepted Solution

by:
Justin Smith earned 300 total points
ID: 37752069
You apply the SSL just like you would in any IIS site (install cert, create binding, etc).

Within Central Admin, you'll need to add an ALternate Access Mapping to your web application, for the https://  address.

That's about it.
0
 

Author Comment

by:rsnellman
ID: 37753277
OK.  So, I install the cert like I would a normal IIS site (within IIS Manager), correct?

Now the binding, I am not sure of.  Could you explain the steps involved further?


After all that is done, then I add a "Alternate Access Mapping to that specific web app (aka SharePoint - 80) and use https://servername for the address?

Does it need to be a Public URL or Internal URL?

Currently, I have users accessing it based on their login credentials.  And I am not wanting it to be seen by the world, so Internal URL is the way I wish to go, right?  However, these users need to access it from home (off-site) would that affect it any?

Thanks.
0
 

Author Comment

by:rsnellman
ID: 37753294
The link somewhat helps, but it mentions being based off a setup utilizing SharePoint being configured for Forms based web app, which I don't think it is.

Does the link still apply in some fashion?

Sorry, I am new to SharePoint, have no official training and I am expected to make this work.  Got to love unrealistic bosses.


Thanks again.
0
 
LVL 38

Assisted Solution

by:Justin Smith
Justin Smith earned 300 total points
ID: 37753295
Unless the URL is registered on public DNS, its not available to the public.

For the binding, you go to the site in IIS, and there is a bindings link on the right.  You click it and add one for port 443.

I can't tell you what URL to use, I don't know if it should be https://servername or not. All I know is, whatever URL you want your users to access the site as, it has to be added as an Alternate Access Mapping on the web app.

If you need remote assistance, I"m available.
0
 

Author Comment

by:rsnellman
ID: 37753552
OK, the process makes more sense now.

Currently, we were using a Server 2003 R2 x32 running IIS 6 & WSS 3.0 and users were tagging into the SharePoint off-site by using the server IP.  I don't mind that, but do want to secure those connections with a SSL cert.  So, now we have a GoDaddy SSL cert to apply to it.  So, whether they use the IP still or not, just want it secured.

So, could I create an Internal URL alternate access mapping of the web app (SharePoint - 80) and still allow off-site users to reach it via HTTPS?

Thanks again.
0
 
LVL 38

Expert Comment

by:Justin Smith
ID: 37753634
As long as the URL was available outside, either through VPN or public DNS, yes.
0
How does your email signature look on mobiles?

Do your employees use mobile devices to reply to emails? With mobile becoming increasingly important to the business world, it is in your best interest to make sure that your email signature looks great across all types of devices.

 

Author Comment

by:rsnellman
ID: 37753693
So, they could use HTTPS://IP    (The server IP) still then?  Awesome.


Thanks.
0
 

Author Comment

by:rsnellman
ID: 37753977
OK, now this is strange.  I followed the steps according to the link provided earlier and well, I guess I don't want a Public URL, because it didn't prompt me to authenticate, but rather just allowed me in under the System Account by default.

So, off to try it again, but this time a custom Internal URL.
0
 

Author Comment

by:rsnellman
ID: 37759086
Ok, so is there another way to add SSL cert to sharepoint?  Reason I ask is now with the SSL cert applied to sharepoint it looks like anyone can access it.  I do not want anyone but the users that are in the sharepoint to see anything or do anything on sharepoint without first logging into it.
0
 
LVL 38

Assisted Solution

by:Justin Smith
Justin Smith earned 300 total points
ID: 37759128
Adding an SSL cert doesn't change security at all (unless you have configured zone specific user policies on the web app).
0
 
LVL 38

Expert Comment

by:Justin Smith
ID: 37759132
You guys could probably save a bunch of time, heart ache, and money by having a SharePoint consultant do the work you are trying to do between your two EE tickets. :)
0
 

Author Comment

by:rsnellman
ID: 37759158
OK.  Wasn't sure.  After all the strange things with this migration, I am not sure of anything anymore.  

Yes, consultants are a life saver and time saver, but unfortunantly it takes money where this only takes time and my bosses mindset is he is already paying me so he is not out of money that way.  It is funny & sad at the same time.  Oh, well.

It took over a year to get him to agree to subscribing to EE.  It is like he wants me to run everything, but give me no support to accomplish it.  Very frustrating at times.


Thanks again for all your help.  You my friend are a life saver.
0
 
LVL 38

Expert Comment

by:Justin Smith
ID: 37759198
I understand.  Most "bosses" don't realize they end up paying more money by having their people beat their heads against the wall for two weeks than they do bringing in a consultant for a day or two.
0
 

Author Comment

by:rsnellman
ID: 37759229
Amen to that.


Enjoy the day.
0

Featured Post

Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

Join & Write a Comment

If you don't have the right permissions set for your WordPress location in IIS, you won't be able to perform automatic updates. Here's how to fix the problem.
Sometimes drives fill up and we don't know why.  If you don't understand the best way to use the tools available, you may end up being stumped as to why your drive says it's not full when you have no space left!  Here's how you can find out...
This tutorial will give a an overview on how to deploy remote agents in Backup Exec 2012 to new servers. Click on the Backup Exec button in the upper left corner. From here, are global settings for the application such as connecting to a remote Back…
This tutorial will walk an individual through the steps necessary to enable the VMware\Hyper-V licensed feature of Backup Exec 2012. In addition, how to add a VMware server and configure a backup job. The first step is to acquire the necessary licen…

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

19 Experts available now in Live!

Get 1:1 Help Now