SSL enabled ASP.NET application

[Guest]

Hi
I have tried two approaches
1. SSL enable just the login.aspx, the application gives me the SSL enabled
login page and successfully authenticated the user a/c. The only problem
was I was prompted on every page I loaded with the message "the page
contains both secure / non-secure information do you want to show the
non-secured information?". This is quite annoying, is there anything we can
do about this?

the 2nd approach
2. SSL enable the whole application, the application would still present the
server certificates to confirm if I wanted to proceed, but then after my
confirmation I got "Server application unavailable" the big red screen! Did
I miss anything?

Here is how I SSL enable the application
on the property page, open the directory security tab, under Secure
Communication - click on "Edit", select Require Secure Channel(SSL).

Any advice, please?!

TIA

--

 

[Dominick Baier [DevelopMentor]]

Hello dl,

do you already have a working server cert and port 443 is set??

 

[Karim]

Hi
I have tried two approaches
1. SSL enable just the login.aspx, the application gives me the SSL enabled
login page and successfully authenticated the user a/c. The only problem
was I was prompted on every page I loaded with the message "the page
contains both secure / non-secure information do you want to show the
non-secured information?". This is quite annoying, is there anything we can
do about this?

You would get this message if you have anything on the page that does not
reside on the ssl'd server. For example if you have images whose urls are
not from the same website as the current page.



Tony

 

[Guest]

in this scenario, under the whole application_root, I only ssl enable the
login.aspx so I assume after a successful login, the other pages should not
have any secured items to display?!

 

[Guest]

I have checked and fixed the problem with 2nd approach. ie. I have now SSL
enabled the whole application root, but I am still getting the annoying
popup with the message "the page contains both secure and non-secure items,
do you want to show the non-secured items", if I click yes, then the padlock
"showing SSL enabled" will disappear, but if I click no, the page will still
be displayed along with the padlock, and all elements on the page are still
functioning and nothing is missing!
All my files are put in a sub-directory under the application root!

Here is my environment
win2000 server
..NET framework sdk 1.1 with hotfix(kb886903)
..custom account for the aspnet_wp process
..form authentication

Any idea, please? I am stuck!
What are the steps to SSL enable ASP.NET application? I believe someone
must have done it successfully, please help!

TIA

 

[Dominick Baier [DevelopMentor]]

Hello dl,

are you using resources in your page that specifically use the "http:" moniker,
like images or something like that. be sure that all links are relative like
"~/images"...

 

[Guest]

Hi Dominick
Finally, I got it fixed. That was because of the menu control I used!
Thanks.