Friday, March 16, 2018

iis 7 - Force users to access SSL site using specific host header



So i am running IIS7 with one SSL site on it. I have a few different domains and subdomains that all point to my external IP. When using http they all direct to their respective sites using host headers. Whenever someone uses https on any of the domains they all point to my SSL site.



I only want people who type in https://sub.domain.com (for example) to end up at my secure site and for anything else to just not go there, it can throw an error or direct to the http version, it doesn't matter.



Is there a way of getting IIS7 to check the host header and throw an error if it doesn't match my specific subdomain?



Thanks,




Michael


Answer



You should use URL Rewrite for that, see Canonicalization and Host Names below:
http://blogs.msdn.com/b/carlosag/archive/2008/09/02/iis7urlrewriteseo.aspx


No comments:

Post a Comment

linux - How to SSH to ec2 instance in VPC private subnet via NAT server

I have created a VPC in aws with a public subnet and a private subnet. The private subnet does not have direct access to external network. S...