https connection?

J

Jenny

Hi all,

Two questions:

How can I force the use of an https connection for a first
password site?

What is the best way to prevent direct access to the pages
behind this password site?

Thanks in advance

Jenny
 
M

Marc Hoeppner

Hi,

1) yes, you can set that up in IIS.First you need to install the SSL
certificate inside IIS, then you go to 'directory security', edit and switch
on the 'require secure channel (SSL)' checkbox.

2) If you are just talking about ASPX pages, the built-in security of
ASP.NET is just fine. So you setup your web.config file to Forms
authentication, deny access for users who are not logged in and allow access
for authenticated users.

There are two nice papers about this in case you are interested:

http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnnetsec/html/secnetlpMSDN.asp

http://msdn.microsoft.com/library/default.asp?url=/library/en-us/dnbda/html/authaspdotnet.asp

Best regards,

Marc Hoeppner
NeoGeo
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Registration Form 7
Help me, going live with a quiz 0
Establishing Https connection 3
Survey details won't go through using php, ajax, Mysql 0
Inheritance and the "is-A" connection 1
Uhhhhh, What can I do next? 6
Script works fine on test server but not on production server 3
Web scraping i guess (Yet to start, maybe this should be done in python?) 1

Members online

No members online now.
Total: 40 (members: 2, guests: 38)
Robots: 459

Forum statistics

Threads
473,768
Messages
2,569,574
Members
45,048
Latest member
verona

Latest Threads

Top