locked
SP2013 AAM RRS feed

  • Question

  • Hello,

    I have a SharePoint 2013 with four web applications. These web applications are extended to provide access https.

    Is it possible to disable in iis web applications with http to force users to access https ?, in case if possible, is it advisable ?.

    Thanks and regards!!


    ******************************* Jesús Manuel Villalba Gómez Administrador de Exchange *******************************

    Tuesday, February 3, 2015 11:22 AM

Answers

  • Hello,

    it is possible and it is advisable to use HTTPS instead of HTTP :-). You could always switch between HTTP and HTTPS.

    You have 2 options to accomplish this task:

    1. remove http binding inside the IIS and force the user to use https. In case they use HTTP they will receive a message that they have to use HTTPS. You need to edit the AAM public URL.

    2. to create URL rewrite rule (you will need to install URL rewrite module for IIS). Here you could find a good example how to create a rule - http://pcfromdc.blogspot.com/2013/10/how-to-redirect-from-http-to-https-with.html. In this case the users will be redirected from HTTP to HTTPS always. You need to edit the AAM and set the public URL to https. This method is more intelligent :-)

    Hope this helps.

    Enjoy :-)

    • Marked as answer by Rebecca Tu Friday, February 13, 2015 6:17 AM
    Wednesday, February 4, 2015 8:10 AM

All replies

  • Hello,

    You need to select SSL while creating web application.

    Below blog for more information

    http://sharepointshah.blogspot.in/2012/10/create-ssl-https-site-in-sharepoint-2010.html


    Thanks.... ________________ Baba (MCTS, MCPD)

    Wednesday, February 4, 2015 6:06 AM
  • Hello,

    it is possible and it is advisable to use HTTPS instead of HTTP :-). You could always switch between HTTP and HTTPS.

    You have 2 options to accomplish this task:

    1. remove http binding inside the IIS and force the user to use https. In case they use HTTP they will receive a message that they have to use HTTPS. You need to edit the AAM public URL.

    2. to create URL rewrite rule (you will need to install URL rewrite module for IIS). Here you could find a good example how to create a rule - http://pcfromdc.blogspot.com/2013/10/how-to-redirect-from-http-to-https-with.html. In this case the users will be redirected from HTTP to HTTPS always. You need to edit the AAM and set the public URL to https. This method is more intelligent :-)

    Hope this helps.

    Enjoy :-)

    • Marked as answer by Rebecca Tu Friday, February 13, 2015 6:17 AM
    Wednesday, February 4, 2015 8:10 AM