AXISHK
asked on
SSL for SharePoint
Any idea how to enable the current SharePoint 2010 with SSL ?
Currently, the Portal has supported several sites, some binded to different port while others create under /sites/xxx.
Do I need to change the web alternate path and change it from http to https ? Any steps or guideline is appreciate.
Tks
Currently, the Portal has supported several sites, some binded to different port while others create under /sites/xxx.
Do I need to change the web alternate path and change it from http to https ? Any steps or guideline is appreciate.
Tks
ASKER
Tks. How to create and load the SSL certificate on SharePoint ?
ASKER CERTIFIED SOLUTION
membership
Create a free account to see this answer
Signing up is free and takes 30 seconds. No credit card required.
ASKER
"just extend the web application (Central Admin - Manage Web Apps - Extend) to another zone and specify SSL. You'll then need to install the Cert to the binding on the extended site in IIS (not the original site)."
Any more instruction (or guideline) on this ?
Any more instruction (or guideline) on this ?
Not really, it's pretty straight forward.
http://technet.microsoft.com/en-us/library/gg276323%28v=office.14%29.aspx
http://technet.microsoft.com/en-us/library/gg276323%28v=office.14%29.aspx
ASKER
Internal URL zone Public URL for Zone
http://portal:8083 Default http://portal:8083
http://portal Default http://portal
http://portal.abc.com Extranet http://portal.abc.com
http://portal:8088 Default http://portal:8081
http://ca01.abc.com:8081 Internet http://ca01.abc.com:8081
If I simply apply the ssl certificate under IIS mentioned below, does it equivalent to the your question "Are you wanting to force all traffic over SSL" ? Does it mean I can simplify request the SSL certificate under IIS and then modify the AAM ? Is that the setting that I need to go through (Configuration-3)
https://knowledge.verisign.com/support/ssl-certificates-support/index?page=content&actp=CROSSLINK&id=AR865
If I extend the web application, it will reuse same content even though I select "Use an existing IIS web site" and "Create a new IIS web site", correct ?
Should I put the entry as attached (Sharepoint1 & SharePoint2)
SharePoint1.png
SharePoint2.png
Configuration-3.png
http://portal:8083 Default http://portal:8083
http://portal Default http://portal
http://portal.abc.com Extranet http://portal.abc.com
http://portal:8088 Default http://portal:8081
http://ca01.abc.com:8081 Internet http://ca01.abc.com:8081
If I simply apply the ssl certificate under IIS mentioned below, does it equivalent to the your question "Are you wanting to force all traffic over SSL" ? Does it mean I can simplify request the SSL certificate under IIS and then modify the AAM ? Is that the setting that I need to go through (Configuration-3)
https://knowledge.verisign.com/support/ssl-certificates-support/index?page=content&actp=CROSSLINK&id=AR865
If I extend the web application, it will reuse same content even though I select "Use an existing IIS web site" and "Create a new IIS web site", correct ?
Should I put the entry as attached (Sharepoint1 & SharePoint2)
SharePoint1.png
SharePoint2.png
Configuration-3.png
You cannot simply do something in IIS, you must tell SharePoint about it. Meaning you must extend the web app or add a new zone URL before doing anything in IIS.
By force I mean the site will only respond to https requests. If you try http you'll get an error or be routed to https. In order to do that you'll need to change your default zone URL.
If you extend, yes, the same content.
By force I mean the site will only respond to https requests. If you try http you'll get an error or be routed to https. In order to do that you'll need to change your default zone URL.
If you extend, yes, the same content.
ASKER
Giving the created url above :
http://portal:8083 Default http://portal:8083
http://portal Default http://portal
http://portal.abc.com Extranet http://portal.abc.com
And I want to support : https://portal:8083, https://portal & https://portsal.abc.com, I need to extend these one by one ?
In addition, when extend the website, it asked for port, but in fact, I need to use the same port, but only access it through https, what should I need under the port, public url and zone ?
Or, can I simply "add a new zone URL" as you mentioned ? What zone should I add - Internet ?
Great Tks.
http://portal:8083 Default http://portal:8083
http://portal Default http://portal
http://portal.abc.com Extranet http://portal.abc.com
And I want to support : https://portal:8083, https://portal & https://portsal.abc.com, I need to extend these one by one ?
In addition, when extend the website, it asked for port, but in fact, I need to use the same port, but only access it through https, what should I need under the port, public url and zone ?
Or, can I simply "add a new zone URL" as you mentioned ? What zone should I add - Internet ?
Great Tks.
ASKER
Finally fix my problem, Tks
Refer to http://blogs.msdn.com/b/sharepoint_strategery/archive/2013/05/27/alternate-access-mappings-explained.aspx for more info.