Re: Port 80 still works after "Require secure channel (SSL)"
- From: "David Wang [Msft]" <someone@xxxxxxxxxxxxxxxxxxxx>
- Date: Fri, 28 Apr 2006 06:02:06 -0700
"Require Secure Channel (SSL)" applies at a per-URL basis.
Port 80 functioning applies at a per-ServerBinding basis.
The two are not equivalent unless you mark the root of the website as
"Require Secure Channel" and it inherits throughout the website -- so the
fact that both HTTP and HTTPS work with "Require Secure Channel" depends
totally on your configuration, which you did not provide.
Please provide:
1. Exact URL that works for both HTTP and HTTPS
2. The value of the AccessSSLFlags property that applies to that URL
I suspect you have some non-obvious misconfiguration, perhaps via an
IIsWebFile, by accident.
--
//David
IIS
http://blogs.msdn.com/David.Wang
This posting is provided "AS IS" with no warranties, and confers no rights.
//
"Shifarad" <Shifarad@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:ECD2A25E-3383-4AD2-A769-0E7BDAE43D5D@xxxxxxxxxxxxxxxx
Hi all,
After i locked down a Win2003 Server I installed a certificate, checked
the
"Require secure channel (SSL)" , but i can still logon to this web
application over http. https is working also fine.
Any Ideas?
Thanks,
Shif
.
- Prev by Date: Re: Remote administration security group.....
- Next by Date: Re: Access Databases & IIS 6.0
- Previous by thread: Re: Muliple Websites on Mutliple IP address with certicles [SSL]
- Next by thread: Re: Access Databases & IIS 6.0
- Index(es):
Relevant Pages
|
