Re: Http to https redirect for WSS3
Ok, In Sharepoint Central Administrator it does not give me the option to excluded the httpredirect Virtual Dir from the managed paths. But if I type int stsadm -o addpath -url http://portal.domain.com/httpredirect -type exclusion I get the following error. The server administration programs and the Windows SharePoint Services Web applications on this Web server are not compatible. Ensure that the administration program is the same version as the Web application. This was a fresh install of WSS3 and fully configured from there. WSS3 SP 1 has been applied some time after the site was working, and has been working fully since. Any ideas. Graeme On Sun, Apr 6, 2008 at 6:32 AM, Ken Schaefer [EMAIL PROTECTED] wrote: You probably need to go into WSS and make the .asp page you created a non-managed page. At the moment there will be a problem because IIS is configured to require SSL, but Sharepoint is also trying to manage the page and attempting to require auth to access it. Cheers Ken *From:* Graeme Carstairs [mailto:[EMAIL PROTECTED] *Sent:* Sunday, 6 April 2008 6:35 AM *To:* NT System Admin Issues *Subject:* Re: Http to https redirect for WSS3 If I goto http://portal.domain.com with the require SSL turned on, I get an error page saying that the user is required to logon, but no login prompt. If i goto http://portal.domain.com with the require ssl turned off I get the usual login options for the web site from outside, and from inside I get straight to the wss page as I am using NT Login. Graeme On Sat, Apr 5, 2008 at 9:24 PM, Jim McAtee [EMAIL PROTECTED] wrote: If I force SSL on the website, then I get an error that the ASP page needs you to login. Do you mean the user is prompted to login when they're redirected to the https (port 443) URL or do you mean that the ASP page is never executed? Does http://portal.domain.com prompt for a login? - Original Message - From: Graeme Carstairs [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Saturday, April 05, 2008 6:26 AM Subject: Http to https redirect for WSS3 I have recently started to look at a site who have what was meant to be a trial but has grown into a business critical application, WSS3 site. The site is setup in IIS in its own website called portal. Internally and Externally it is accessed by HTTP://portal.domain.com The alternate access mapping is set to this. I have been insisting since day one that the go HTTPS. They have just agreed, and I have purchased an SSL cert, applied to IIS, and configured WSS alternate access mapping to point to https://portal.domain.com, opened port 443 on firewall, Now if you enter https://portal.domain.com it all works fine, and WSS generates all inks etc. The problem though is that they have numerous people accessing shortcuts etc, pointing to http, and I would like to set an automatic change for http requests to https. I have created the asp page and set everything up as recommended by MS (i used the asp page they give or owa, for a custom 403 error, just missed out the appending of /exchange to the url.) If I force SSL on the website, then I get an error that the ASP page needs you to login. I have disabled SSL required, on the virtual dir the asp is in, and this still happens I though it was because the redirect virtual dir is under the wss extended site of Portal, and so moved it into a new site, and pointed port 80 to it, but it then just redirects to the site its on and displays under construction. Any one know how I can do this? Any http request portal.domain.com gets conve3rted to https without user intervention. i.e. http://portal.domain.com/ops/it/asset.aspx becomes https://portal.domain.com/ops/it/asset.aspx Thanks in advance Graeme -- Carbon credits are a bit like beating someone up on this side of the world and sponsoring one of those poor starving kids on the other side of the world to make up for the fact that you're a complete shit at home. ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~ ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~ -- Carbon credits are a bit like beating someone up on this side of the world and sponsoring one of those poor starving kids on the other side of the world to make up for the fact that you're a complete shit at home. -- Carbon credits are a bit like beating someone up on this side of the world and sponsoring one of those poor starving kids on the other side of the world to make up for the fact that you're a complete shit at home. ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~
Http to https redirect for WSS3
I have recently started to look at a site who have what was meant to be a trial but has grown into a business critical application, WSS3 site. The site is setup in IIS in its own website called portal. Internally and Externally it is accessed by HTTP://portal.domain.com The alternate access mapping is set to this. I have been insisting since day one that the go HTTPS. They have just agreed, and I have purchased an SSL cert, applied to IIS, and configured WSS alternate access mapping to point to https://portal.domain.com, opened port 443 on firewall, Now if you enter https://portal.domain.com it all works fine, and WSS generates all inks etc. The problem though is that they have numerous people accessing shortcuts etc, pointing to http, and I would like to set an automatic change for http requests to https. I have created the asp page and set everything up as recommended by MS (i used the asp page they give or owa, for a custom 403 error, just missed out the appending of /exchange to the url.) If I force SSL on the website, then I get an error that the ASP page needs you to login. I have disabled SSL required, on the virtual dir the asp is in, and this still happens I though it was because the redirect virtual dir is under the wss extended site of Portal, and so moved it into a new site, and pointed port 80 to it, but it then just redirects to the site its on and displays under construction. Any one know how I can do this? Any http request portal.domain.com gets conve3rted to https without user intervention. i.e. http://portal.domain.com/ops/it/asset.aspx becomes https://portal.domain.com/ops/it/asset.aspx Thanks in advance Graeme -- Carbon credits are a bit like beating someone up on this side of the world and sponsoring one of those poor starving kids on the other side of the world to make up for the fact that you're a complete shit at home. ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~
RE: Http to https redirect for WSS3
Not being an html/web guru.. I would use the http-refresh to flip it over, but it sounds like you would need to do this in a lot of locations not just a main page redirect. What about leaving the Default Web Site on 80, and then create a new site on only 443 and then on the one on port 80 have it redirect to the new site on https? Look at the 'redirection to a new url' option ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~
Re: Http to https redirect for WSS3
I thought about that, but their are many people using deep links to get directly to specific areas. I guess there is still an option of just telling everyone that it is now https: and making a custom error page to show this,. On Sat, Apr 5, 2008 at 7:15 PM, Benjamin Zachary [EMAIL PROTECTED] wrote: Not being an html/web guru.. I would use the http-refresh to flip it over, but it sounds like you would need to do this in a lot of locations not just a main page redirect. What about leaving the Default Web Site on 80, and then create a new site on only 443 and then on the one on port 80 have it redirect to the new site on https? Look at the 'redirection to a new url' option -- Carbon credits are a bit like beating someone up on this side of the world and sponsoring one of those poor starving kids on the other side of the world to make up for the fact that you're a complete shit at home. ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~
RE: Http to https redirect for WSS3
Yah, I wonder if you could take the page being displayed and create a custom error for it? I don't ever mess with the custom pages but that might be something to look at. _ From: Graeme Carstairs [mailto:[EMAIL PROTECTED] Sent: Saturday, April 05, 2008 2:18 PM To: NT System Admin Issues Subject: Re: Http to https redirect for WSS3 ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~
Re: Http to https redirect for WSS3
If I force SSL on the website, then I get an error that the ASP page needs you to login. Do you mean the user is prompted to login when they're redirected to the https (port 443) URL or do you mean that the ASP page is never executed? Does http://portal.domain.com prompt for a login? - Original Message - From: Graeme Carstairs [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Saturday, April 05, 2008 6:26 AM Subject: Http to https redirect for WSS3 I have recently started to look at a site who have what was meant to be a trial but has grown into a business critical application, WSS3 site. The site is setup in IIS in its own website called portal. Internally and Externally it is accessed by HTTP://portal.domain.com The alternate access mapping is set to this. I have been insisting since day one that the go HTTPS. They have just agreed, and I have purchased an SSL cert, applied to IIS, and configured WSS alternate access mapping to point to https://portal.domain.com, opened port 443 on firewall, Now if you enter https://portal.domain.com it all works fine, and WSS generates all inks etc. The problem though is that they have numerous people accessing shortcuts etc, pointing to http, and I would like to set an automatic change for http requests to https. I have created the asp page and set everything up as recommended by MS (i used the asp page they give or owa, for a custom 403 error, just missed out the appending of /exchange to the url.) If I force SSL on the website, then I get an error that the ASP page needs you to login. I have disabled SSL required, on the virtual dir the asp is in, and this still happens I though it was because the redirect virtual dir is under the wss extended site of Portal, and so moved it into a new site, and pointed port 80 to it, but it then just redirects to the site its on and displays under construction. Any one know how I can do this? Any http request portal.domain.com gets conve3rted to https without user intervention. i.e. http://portal.domain.com/ops/it/asset.aspx becomes https://portal.domain.com/ops/it/asset.aspx Thanks in advance Graeme -- Carbon credits are a bit like beating someone up on this side of the world and sponsoring one of those poor starving kids on the other side of the world to make up for the fact that you're a complete shit at home. ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~ ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~
Re: Http to https redirect for WSS3
If I goto http://portal.domain.com with the require SSL turned on, I get an error page saying that the user is required to logon, but no login prompt. If i goto http://portal.domain.com with the require ssl turned off I get the usual login options for the web site from outside, and from inside I get straight to the wss page as I am using NT Login. Graeme On Sat, Apr 5, 2008 at 9:24 PM, Jim McAtee [EMAIL PROTECTED] wrote: If I force SSL on the website, then I get an error that the ASP page needs you to login. Do you mean the user is prompted to login when they're redirected to the https (port 443) URL or do you mean that the ASP page is never executed? Does http://portal.domain.com prompt for a login? - Original Message - From: Graeme Carstairs [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Saturday, April 05, 2008 6:26 AM Subject: Http to https redirect for WSS3 I have recently started to look at a site who have what was meant to be a trial but has grown into a business critical application, WSS3 site. The site is setup in IIS in its own website called portal. Internally and Externally it is accessed by HTTP://portal.domain.com The alternate access mapping is set to this. I have been insisting since day one that the go HTTPS. They have just agreed, and I have purchased an SSL cert, applied to IIS, and configured WSS alternate access mapping to point to https://portal.domain.com, opened port 443 on firewall, Now if you enter https://portal.domain.com it all works fine, and WSS generates all inks etc. The problem though is that they have numerous people accessing shortcuts etc, pointing to http, and I would like to set an automatic change for http requests to https. I have created the asp page and set everything up as recommended by MS (i used the asp page they give or owa, for a custom 403 error, just missed out the appending of /exchange to the url.) If I force SSL on the website, then I get an error that the ASP page needs you to login. I have disabled SSL required, on the virtual dir the asp is in, and this still happens I though it was because the redirect virtual dir is under the wss extended site of Portal, and so moved it into a new site, and pointed port 80 to it, but it then just redirects to the site its on and displays under construction. Any one know how I can do this? Any http request portal.domain.com gets conve3rted to https without user intervention. i.e. http://portal.domain.com/ops/it/asset.aspx becomes https://portal.domain.com/ops/it/asset.aspx Thanks in advance Graeme -- Carbon credits are a bit like beating someone up on this side of the world and sponsoring one of those poor starving kids on the other side of the world to make up for the fact that you're a complete shit at home. ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~ ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~ -- Carbon credits are a bit like beating someone up on this side of the world and sponsoring one of those poor starving kids on the other side of the world to make up for the fact that you're a complete shit at home. ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~
Re: Http to https redirect for WSS3
I believe that's a yes - the http version of the site requires a Windows login. With the redirect I think I would expect two logins - one for the http site, then one for the https, since the browser will see it as a new site requiring different credentials. This is the behavior I see with our Intranet site using domain logins. Most of the site is plain http, but for a few areas (a credit card processing page, for instance), the site links from http://intranet.mydomain.com to https://intranet.mydomain.com. Users are prompted for new credentials when moving to the https site unless the browser already has them cached. - Original Message - From: Graeme Carstairs [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Saturday, April 05, 2008 2:35 PM Subject: Re: Http to https redirect for WSS3 If I goto http://portal.domain.com with the require SSL turned on, I get an error page saying that the user is required to logon, but no login prompt. If i goto http://portal.domain.com with the require ssl turned off I get the usual login options for the web site from outside, and from inside I get straight to the wss page as I am using NT Login. Graeme On Sat, Apr 5, 2008 at 9:24 PM, Jim McAtee [EMAIL PROTECTED] wrote: If I force SSL on the website, then I get an error that the ASP page needs you to login. Do you mean the user is prompted to login when they're redirected to the https (port 443) URL or do you mean that the ASP page is never executed? Does http://portal.domain.com prompt for a login? - Original Message - From: Graeme Carstairs [EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.com Sent: Saturday, April 05, 2008 6:26 AM Subject: Http to https redirect for WSS3 I have recently started to look at a site who have what was meant to be a trial but has grown into a business critical application, WSS3 site. The site is setup in IIS in its own website called portal. Internally and Externally it is accessed by HTTP://portal.domain.com The alternate access mapping is set to this. I have been insisting since day one that the go HTTPS. They have just agreed, and I have purchased an SSL cert, applied to IIS, and configured WSS alternate access mapping to point to https://portal.domain.com, opened port 443 on firewall, Now if you enter https://portal.domain.com it all works fine, and WSS generates all inks etc. The problem though is that they have numerous people accessing shortcuts etc, pointing to http, and I would like to set an automatic change for http requests to https. I have created the asp page and set everything up as recommended by MS (i used the asp page they give or owa, for a custom 403 error, just missed out the appending of /exchange to the url.) If I force SSL on the website, then I get an error that the ASP page needs you to login. I have disabled SSL required, on the virtual dir the asp is in, and this still happens I though it was because the redirect virtual dir is under the wss extended site of Portal, and so moved it into a new site, and pointed port 80 to it, but it then just redirects to the site its on and displays under construction. Any one know how I can do this? Any http request portal.domain.com gets conve3rted to https without user intervention. i.e. http://portal.domain.com/ops/it/asset.aspx becomes https://portal.domain.com/ops/it/asset.aspx Thanks in advance Graeme -- Carbon credits are a bit like beating someone up on this side of the world and sponsoring one of those poor starving kids on the other side of the world to make up for the fact that you're a complete shit at home. ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~ ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~ -- Carbon credits are a bit like beating someone up on this side of the world and sponsoring one of those poor starving kids on the other side of the world to make up for the fact that you're a complete shit at home. ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~ ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~
RE: Http to https redirect for WSS3
You probably need to go into WSS and make the .asp page you created a non-managed page. At the moment there will be a problem because IIS is configured to require SSL, but Sharepoint is also trying to manage the page and attempting to require auth to access it. Cheers Ken From: Graeme Carstairs [mailto:[EMAIL PROTECTED] Sent: Sunday, 6 April 2008 6:35 AM To: NT System Admin Issues Subject: Re: Http to https redirect for WSS3 If I goto http://portal.domain.com with the require SSL turned on, I get an error page saying that the user is required to logon, but no login prompt. If i goto http://portal.domain.com with the require ssl turned off I get the usual login options for the web site from outside, and from inside I get straight to the wss page as I am using NT Login. Graeme On Sat, Apr 5, 2008 at 9:24 PM, Jim McAtee [EMAIL PROTECTED]mailto:[EMAIL PROTECTED] wrote: If I force SSL on the website, then I get an error that the ASP page needs you to login. Do you mean the user is prompted to login when they're redirected to the https (port 443) URL or do you mean that the ASP page is never executed? Does http://portal.domain.com prompt for a login? - Original Message - From: Graeme Carstairs [EMAIL PROTECTED]mailto:[EMAIL PROTECTED] To: NT System Admin Issues ntsysadmin@lyris.sunbelt-software.commailto:ntsysadmin@lyris.sunbelt-software.com Sent: Saturday, April 05, 2008 6:26 AM Subject: Http to https redirect for WSS3 I have recently started to look at a site who have what was meant to be a trial but has grown into a business critical application, WSS3 site. The site is setup in IIS in its own website called portal. Internally and Externally it is accessed by HTTP://portal.domain.com The alternate access mapping is set to this. I have been insisting since day one that the go HTTPS. They have just agreed, and I have purchased an SSL cert, applied to IIS, and configured WSS alternate access mapping to point to https://portal.domain.com, opened port 443 on firewall, Now if you enter https://portal.domain.com it all works fine, and WSS generates all inks etc. The problem though is that they have numerous people accessing shortcuts etc, pointing to http, and I would like to set an automatic change for http requests to https. I have created the asp page and set everything up as recommended by MS (i used the asp page they give or owa, for a custom 403 error, just missed out the appending of /exchange to the url.) If I force SSL on the website, then I get an error that the ASP page needs you to login. I have disabled SSL required, on the virtual dir the asp is in, and this still happens I though it was because the redirect virtual dir is under the wss extended site of Portal, and so moved it into a new site, and pointed port 80 to it, but it then just redirects to the site its on and displays under construction. Any one know how I can do this? Any http request portal.domain.comhttp://portal.domain.com gets conve3rted to https without user intervention. i.e. http://portal.domain.com/ops/it/asset.aspx becomes https://portal.domain.com/ops/it/asset.aspx Thanks in advance Graeme -- Carbon credits are a bit like beating someone up on this side of the world and sponsoring one of those poor starving kids on the other side of the world to make up for the fact that you're a complete shit at home. ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~ ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~ -- Carbon credits are a bit like beating someone up on this side of the world and sponsoring one of those poor starving kids on the other side of the world to make up for the fact that you're a complete shit at home. ~ Upgrade to Next Generation Antispam/Antivirus with Ninja!~ ~ http://www.sunbelt-software.com/SunbeltMessagingNinja.cfm ~