http://forums.iis.net/1031.aspxA forum aimed at helping understand IIS security such as Authentication, IP restrictions, and SSLenCommunityServer 2007 SP1 (Build: 20510.895)http://forums.iis.net/thread/1882044.aspxWed, 15 Oct 2008 01:37:31 GMT50bcf3b4-f6fe-4638-adff-0c150e922e99:1882044naziml0http://forums.iis.net/thread/1882044.aspxhttp://forums.iis.net/commentrss.aspx?SectionID=1031&PostID=1882044<p>You can use IIS config to redirect instead of the application doing it. Here&#39;s how you set this up for IIS6: <a href="http://technet.microsoft.com/en-us/library/cc736641.aspx">http://technet.microsoft.com/en-us/library/cc736641.aspx</a></p>http://forums.iis.net/thread/1882022.aspxTue, 14 Oct 2008 17:20:57 GMT50bcf3b4-f6fe-4638-adff-0c150e922e99:1882022mybestguess0http://forums.iis.net/thread/1882022.aspxhttp://forums.iis.net/commentrss.aspx?SectionID=1031&PostID=1882022<p>Thank you. I know about the certificates but I didn&#39;t know if there was an easier solution.&nbsp; We have 7 certificates for 7 domains and on 3 of those domains, there are 20+ sites that need to have SSL enabled.</p> <p>&nbsp;The only problem I saw with that is there will be a lot of custom code entered to handle redirects to https and I didn&#39;t know if there was an easier way to handle the redirect instead of custom coding each of the 75+ sites?</p>http://forums.iis.net/thread/1881974.aspxTue, 14 Oct 2008 11:07:08 GMT50bcf3b4-f6fe-4638-adff-0c150e922e99:1881974jeff@zina.com0http://forums.iis.net/thread/1881974.aspxhttp://forums.iis.net/commentrss.aspx?SectionID=1031&PostID=1881974<p><BLOCKQUOTE><div><img src="/Themes/iis/images/icon-quote.gif"> <strong>mybestguess:</strong></div><div>If you have any suggestions regarding the best way to add SSL to existing sites please let me know.&nbsp;</div></BLOCKQUOTE></p> <p>Install the certificate and check the Require Secure Connections box.</p> <p>Jeff</p>http://forums.iis.net/thread/1881921.aspxMon, 13 Oct 2008 18:54:58 GMT50bcf3b4-f6fe-4638-adff-0c150e922e99:1881921mybestguess0http://forums.iis.net/thread/1881921.aspxhttp://forums.iis.net/commentrss.aspx?SectionID=1031&PostID=1881921<p>It as been the recent task of our team to come up with both short and long term solutions to the concern of SSL security on our sites.</p> <p>The first solution off the top of the head is to do 1 of the following 2.&nbsp; Either take the pain and time consuming option of coding each individual website to rediret to https to use ssl.&nbsp; The second approach would be to have IIS force a redirect to the https and www paths.</p> <p>The catch is what would be the best approach.&nbsp; I am thinking of a quick and easy temporary solution first.&nbsp; Then a long term solution.&nbsp; But the long term solution has a catch.&nbsp; In the next few months (early - Mid 2009) we are moving to Server 2008 with IIS7 and that may negate the changes necessary in IIS6.</p> <p>Any and all suggestions are appreciated on this matter.&nbsp; If you have any suggestions regarding the best way to add SSL to existing sites please let me know.&nbsp; I would like to try and avoid a manual reprogramming of that many websites.&nbsp; Thank you</p> <p>MBG</p>