Present a secured site maintenance page.

Dear Experts,

We have a IIS secured website which has yet to pass a penetration test before we can open it to public access.

Is there a secured way we could allow some sort of static page for external access site until the pen test is completed?

The website is already linked to a secured certificate which has the site's common name defined.  Basically, we want to present a maintenance page just to relay the information that the site is not available or not yet active.

Please advise if this is doable or not.

Thanks in advance ;)
nav2567Asked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

btanExec ConsultantCommented:
Can consider a http redirect and limit to specific location in server.
To configure the content to come from only the specified destination directory, use the following syntax:
appcmd set config /section:httpRedirect /childOnly:true | false
By default, this attribute is false, but you specify true for the childOnly attribute. To do this, type the following at the command prompt, and then press ENTER:
appcmd set config /section:httpRedirect /childOnly:true
https://technet.microsoft.com/en-us/library/cc731578(v=ws.10).aspx

Another is that you could set that site up to serve the same page for all requests, regardless of the request URL. The strategy is to stop website regardless of the request coming in
Assuming you have IIS Scripting installed, open an elevated PowerShell:

import-module webadministration

Consider stopping all sites except the Offline one:

Get-ChildItem IIS:\Sites | Where {$_.Name -ne "Offline"} | Stop-WebSite

when the SQL-Server is back up, start them up again:

Get-ChildItem IIS:\Sites | Where {$_.Name -ne "Offline"} | Start-WebSite

For FTP sites, the commands will show an error. You cannot pipe an FTP site to a Stop-WebSite cmdlet, but it still works for all the web sites.

For sites that are not running alright, consider to exclude them:

Where {$_.Name -ne "Offline" -and $_.Name -ne "foobar.com"}

If there is no PowerShell cmdlets for IIS installed, you can explore appcmd.exe  
nav2567Author Commented:
Thanks.

The website is already binded to a SSL certificate and we open only 443 on our firewall.

Will redirect work?
btanExec ConsultantCommented:
Redirect for ssl should work as long as there is no mismatch of common name and hostname with regards to the server ssl cert. Otherwise, there will be dropping of connection before the redirect has a chance to take effect.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft IIS Web Server

From novice to tech pro — start learning today.