RE: HTTPS automatic redirection
From: Levi (anonymous_at_discussions.microsoft.com)
Date: 11/13/03
- Next message: Keith W. McCammon: "Re: SSL Setup for Load-Balanced Web Farm"
- Previous message: Douglas J. Badin: "SBS 2000 + ASP.NET 1.1 + IIS Lockdown not working."
- In reply to: Eric Shen [MSFT]: "RE: HTTPS automatic redirection"
- Next in thread: Eric Shen [MSFT]: "RE: HTTPS automatic redirection"
- Reply: Eric Shen [MSFT]: "RE: HTTPS automatic redirection"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 13 Nov 2003 09:33:53 -0800
I've tried both 279681 & 239875. Regarding the former, I
get a 403 error after I set the custom 403.4 error path
to /forceSSL.asp (w/ 239875 code instead of exchange
code). Regarding the latter, I've tried putting the
include code in dummy files and in the 403.4 html file,
both to no avail. The dummy or 403.4 pages come up fine,
but there's no redirection to https.
forceSSL.asp file with 239875 code is located in web
root. Also placed forceSSL.inc file in web root in
accordance with instructions, but experienced errors as
described above.
Don't want to do a static redirect, as I have multiple
secured pages that point to different sites on the
server. Also can't figure out how to statically redirect
the default SharePoint Services 2003 page anyway.
Thank you in advance for any assistance.
>-----Original Message-----
>Hi Levi,
>
>A very good question!
>
>We can try to use the 403.4 error (Forbidden-SSL
required) to redirect the
>connection from HTTP to HTTPS. When this Web site is
required to use HTTPS
>and the user is using HTTP to access, IIS will return
this page to the
>client. If we add the redirect code into this page, the
client will be
>automatically redirected to the HTTPS Web site.
>
>Please refer to the following article for more
information. They are using
>for OWA but applies to a general Web site as well.
>
>268822 XWEB: OWA How to Redirect
http://
>http://support.microsoft.com/?id=268822
>
>- This article is using a static page, you can change
the link to your SSL
>Web site to implement what you would like to do.
>
>279681 How to Force SSL Encryption for an Outlook Web
Access 2000 Client
>http://support.microsoft.com/?id=279681
>
>- This article is using a dynamic page (ASP) so you can
implement more as
>you would.
>
>Please let me know if this solves this issue or if you
need further
>assistance. I look forward to hearing from you.
>
>Regards,
>
>Eric Shen
>Product Support Services
>Microsoft Corporation
>
>This posting is provided "AS IS" with no warranties, and
confers no rights.
>
>Get Secure! - www.microsoft.com/security
>
>.
>
Relevant Pages
... We can try to use the 403.4 error to redirect the ... When this Web site is required to use HTTPS ... If we add the redirect code into this page, the client will be ...
(microsoft.public.inetserver.iis.security)
... The redirection available in IIS will only tell the client that the page ... IIS does however not care what the client does next to this. ... I want to redirect site on my live ip 202.x.x.x> configured on my live windows 2003 server. ... that server also redirect on> private ip 192.x.x.x of my another web site in LAN. ...
(microsoft.public.inetserver.iis)
... else.So how do I publish a web site that can redirect every request ... http request to go to https. ...
(microsoft.public.inetserver.iis)
... program in ASP, ... I now have the redirect working, however, I cannot figure ... >different HTTPS requirement setting than the Web site. ... >results of this page to the client. ...
(microsoft.public.inetserver.iis.security)
... If you use the URL error for 403.4 error and redirect it to an ASP file ... different HTTPS requirement setting than the Web site. ... results of this page to the client. ...
(microsoft.public.inetserver.iis.security)
