IIS Server Security - Stop HTTP Access

Author

Stop HTTP Access

Thom Little

2006-06-22, 7:24 am

I have an ASP.NET 1.1 application on a Windows 2000 Server that can be
accessed as ...

http://name.tld or https://name.tld .

How can I force it to disallow the http access and only permit the https
access?

--
-- Thom Little -- www.tlanet.net -- Thom Little Associates, Ltd.
--

Ken Schaefer

2006-06-22, 7:23 pm

There is an option in IIS Manager: right-click the site/folder/file you wish
to secure -> properties -> security tab -> edit ssl security -> check the
"require SSL" checkbox.

Cheers
Ken

"Thom Little" <thom@tlanet.net> wrote in message
news:uKEK3celGHA.3528@TK2MSFTNGP02.phx.gbl...
>I have an ASP.NET 1.1 application on a Windows 2000 Server that can be
>accessed as ...
>
> http://name.tld or https://name.tld .
>
> How can I force it to disallow the http access and only permit the https
> access?
>
> --
> -- Thom Little -- www.tlanet.net -- Thom Little Associates, Ltd.
> --
>
>
>

Thom Little

2006-06-23, 7:31 am

I was finally able to get the owner of the server to set it as you suggested
so I could try it out.

It does exactly what I need.

Thank you.

The following code in my application pages forces it to connect with HTTPS
and is no longer needed...

private void Page_Load(object sender, System.EventArgs e)
{
if ( Request.Url.ToString( ).StartsWith( "http://" ) )
Response.Redirect( Request.Url.ToString( ).Replace( "http://",
"https://" ) );
}

--
-- Thom Little -- www.tlanet.net -- Thom Little Associates, Ltd.
--

"Ken Schaefer" <kenREMOVE@THISadOpenStatic.com> wrote in message
news:%23MxFD4klGHA.3588@TK2MSFTNGP02.phx.gbl...
> There is an option in IIS Manager: right-click the site/folder/file you
> wish to secure -> properties -> security tab -> edit ssl security -> check
> the "require SSL" checkbox.
>
> Cheers
> Ken
>
>
> "Thom Little" <thom@tlanet.net> wrote in message
> news:uKEK3celGHA.3528@TK2MSFTNGP02.phx.gbl...
>
>