locked
remove require ssl only from one page? RRS feed

Answers

  • User-1949460947 posted

    You can use the system.webServer / security / access element in your web.config within a location element, for example:

    <location path="YourSubfolderNameGoesHere">
       <system.webServer>
          <security>
             <access sslFlags="ssl">
          </security>
       </system.webServer>
    </location>

    Read more: http://www.iis.net/configreference/system.webserver/security/access

    Hope this helps,

    - György

    • Marked as answer by Anonymous Thursday, October 7, 2021 12:00 AM
    Wednesday, May 21, 2014 4:20 PM

All replies

  • User-1941247845 posted

    No you cannot as the setting is applicable for your entire website. If at all if you feel you will have SSL for few pages of your website then you may have to host it into a different SSL' zed website and then redirect to it from your other website.

    Hope this helps.

    Tuesday, May 20, 2014 2:44 AM
  • User-1693623980 posted

    but I heard we can force ssl for specific pages.

    for example this link

    http://crunchify.com/wordpress-how-to-force-specific-pages-to-be-secure-ssl-https/

    nevermind doing it with programming or iis settings

    but I couldnt  find a good tutorial in asp.net about it.

    Tuesday, May 20, 2014 4:10 AM
  • User-1693623980 posted

    based on linke below

    http://forums.asp.net/t/1120207.aspx?How+to+convert+Http+into+Https+using+SSL+in+IIS+

    and based on donkiely's answer

    "Normally you should put pages you need to protect with SSL in a separate directory and install your certificate just for that directory"

    mybe it is my answer

    how can we install ssl for a seperate directory?

    Tuesday, May 20, 2014 5:31 AM
  • User-1949460947 posted

    You can use the system.webServer / security / access element in your web.config within a location element, for example:

    <location path="YourSubfolderNameGoesHere">
       <system.webServer>
          <security>
             <access sslFlags="ssl">
          </security>
       </system.webServer>
    </location>

    Read more: http://www.iis.net/configreference/system.webserver/security/access

    Hope this helps,

    - György

    • Marked as answer by Anonymous Thursday, October 7, 2021 12:00 AM
    Wednesday, May 21, 2014 4:20 PM