Using SSL certificate for one page in a site
Art Billings
This may be a simple question to answer, but I am a relative newbie to IIS
administration so please be patient with me. I have a SSL certificate,
issued by Thawte, installed on my website. My challenge is that I just want
one page accessed via SSL, not the entire website. How do I accomplish
this. Currently the site is configured to use Host Headers.
Any suggestions, pointers, articles, etc. will be greatly appreciated.
TIA,
Art Billings
Principle Technologies, a division of Laserline, Inc.
"Whatever it takes!"
<:))))><<
Keith W. McCammon
2) Use application code (ASP. PHP, etc.) to force SSL when non-SSL requests
are made.
"Art Billings" <abil...@principle-tech.com> wrote in message
news:u7gIyRvc...@TK2MSFTNGP12.phx.gbl...
Art Billings
Art
"Keith W. McCammon" <k...@km.com> wrote in message
news:OERUivvc...@TK2MSFTNGP10.phx.gbl...
Alexander Strouk
It means forget about host headers. Too much hassle.
Of course, you can redirect a user to httpS when he/she comes to a
certain host.
However, this solution looks ugly to me taking into account that you
are talking about _one page_.
If you use .asp/.aspx or any server side scripts
Make a redirect to https://server/smth to turn ssl on.
Make a redirect to http://server/smth to turn ssl off.
In other words, if you use http://server/smth ssl is turned off, if
you use httpS://server/smth ssl is turned on, provided you have SSL
certificate installed. How to detect if it is turned on/off?
Request.ServerVariables("HTTPS") - (Returns ON if the request came in
through secure channel (SSL) or it returns OFF if the request is for a
non-secure channel)
Alexander
Paul Lynch
You can use code for the page that requires SSL or simply uncheck the
SSL button on the site and select only the required page :
HOW TO: Use ASP to Force SSL for Specific Pages
http://support.microsoft.com/?id=239875
Regards,
Paul Lynch
MCSE