Comments on: Automatically Redirect HTTP requests to HTTPS on IIS 6 http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/ Seasoned IT Dude - MCSE, MCSA, MCTS: SharePoint 2010, MCP Wed, 25 Jan 2012 08:29:30 +0000 hourly 1 http://wordpress.org/?v=3.3 By: Rakesh http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/comment-page-3/#comment-1310 Rakesh Mon, 19 Dec 2011 06:53:21 +0000 http://www.jppinto.com/?p=26#comment-1310 i get another 403 forbidden message saying : The website declined to show this webpage HTTP 403 Most likely causes: •This website requires you to log in. What you can try: Go back to the previous page. More information This error (HTTP 403 Forbidden) means that Internet Explorer was able to connect to the website, but it does not have permission to view the webpage. For more information about HTTP errors, see Help. i get another 403 forbidden message saying :
The website declined to show this webpage
HTTP 403
Most likely causes:
•This website requires you to log in.

What you can try:
Go back to the previous page.

More information

This error (HTTP 403 Forbidden) means that Internet Explorer was able to connect to the website, but it does not have permission to view the webpage.

For more information about HTTP errors, see Help.

]]> By: Networking & Security Solutions » Blog Archive » Automatically Redirect HTTP requests to HTTPS on IIS 6 http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/comment-page-2/#comment-1224 Networking & Security Solutions » Blog Archive » Automatically Redirect HTTP requests to HTTPS on IIS 6 Fri, 05 Aug 2011 02:46:35 +0000 http://www.jppinto.com/?p=26#comment-1224 [...] You can download a copy of this file here: HttpRedirect.zip ? [...] [...] You can download a copy of this file here: HttpRedirect.zip ? [...]

]]> By: Abhijeet http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/comment-page-2/#comment-1203 Abhijeet Thu, 23 Jun 2011 07:17:23 +0000 http://www.jppinto.com/?p=26#comment-1203 Excellent article, this what I was searching. Excellent article, this what I was searching.

]]> By: Skhumbuzo http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/comment-page-2/#comment-1189 Skhumbuzo Fri, 06 May 2011 10:25:49 +0000 http://www.jppinto.com/?p=26#comment-1189 Thank You very much! this worked like a charm Thank You very much! this worked like a charm

]]> By: How to send all HTTP traffic to HTTPS pages « Chaya – Digital Zen http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/comment-page-2/#comment-1188 How to send all HTTP traffic to HTTPS pages « Chaya – Digital Zen Mon, 02 May 2011 22:15:46 +0000 http://www.jppinto.com/?p=26#comment-1188 [...] http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/ [...] [...] http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/ [...]

]]> By: James http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/comment-page-2/#comment-1127 James Mon, 07 Feb 2011 13:31:44 +0000 http://www.jppinto.com/?p=26#comment-1127 This script is perfect for us except for one thing. We need to use a redirect for Symantec Enterprise Vault email archiving. Enterprise Vault creates shortcuts in a person's mailbox and this shortcut has a long url in it that will bring the user to a website to view the original email. Well, Enterprise Vault actually writes the site URL into the actual shortcut so if you change your site URL from HTTP to HTTPS, all of the shortcuts will not work. Stuipd, but that's how it works. So, this redirection script works, but not completely because when it redirects, it cuts off the majority of the URL which can be very long. Is there a way to copy the full HTTP URL into a variable and then pass that variable into the HTTPS redirection? This script is perfect for us except for one thing. We need to use a redirect for Symantec Enterprise Vault email archiving. Enterprise Vault creates shortcuts in a person's mailbox and this shortcut has a long url in it that will bring the user to a website to view the original email. Well, Enterprise Vault actually writes the site URL into the actual shortcut so if you change your site URL from HTTP to HTTPS, all of the shortcuts will not work. Stuipd, but that's how it works. So, this redirection script works, but not completely because when it redirects, it cuts off the majority of the URL which can be very long. Is there a way to copy the full HTTP URL into a variable and then pass that variable into the HTTPS redirection?

]]> By: Andrew K http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/comment-page-2/#comment-1118 Andrew K Mon, 24 Jan 2011 19:40:29 +0000 http://www.jppinto.com/?p=26#comment-1118 This is retarded. All this extra work on an iis6 site to do https redirection. This is retarded. All this extra work on an iis6 site to do https redirection.

]]> By: Kristoff http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/comment-page-1/#comment-1117 Kristoff Mon, 24 Jan 2011 16:17:43 +0000 http://www.jppinto.com/?p=26#comment-1117 Sam is right; JavaScript is not the way to go about redirecting to a different URL. It simply won't work if the browser doesn't support JavaScript, if JavaScript is turned off, or if JavaScript is locked down (a JavaScript redirect would be a security concern IMHO). What you want your server to do instead is send the browser a 3xx response <a href="http://(http://www.ietf.org/rfc/rfc2616.txt)" rel="nofollow">(http://www.ietf.org/rfc/rfc2616.txt)</a>. More specifically, a 301 response would be ideal. This will make the browser redirect the user on a lower level without relying on JavaScript. There is a good document on this here -> <a href="http://blogs.microsoft.co.il/blogs/dorr/archive/2009/01/13/how-to-force-redirection-from-http-to-https-on-iis-6-0.aspx" rel="nofollow">http://blogs.microsoft.co.il/blogs/dorr/archive/2...</a> Sam is right; JavaScript is not the way to go about redirecting to a different URL. It simply won't work if the browser doesn't support JavaScript, if JavaScript is turned off, or if JavaScript is locked down (a JavaScript redirect would be a security concern IMHO).

What you want your server to do instead is send the browser a 3xx response (http://www.ietf.org/rfc/rfc2616.txt). More specifically, a 301 response would be ideal. This will make the browser redirect the user on a lower level without relying on JavaScript.

There is a good document on this here -> http://blogs.microsoft.co.il/blogs/dorr/archive/2…

]]> By: Certificato SSL Self-Signed per IIS usando OpenSSL su Linux | Gianni Amato http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/comment-page-1/#comment-1113 Certificato SSL Self-Signed per IIS usando OpenSSL su Linux | Gianni Amato Wed, 19 Jan 2011 13:34:55 +0000 http://www.jppinto.com/?p=26#comment-1113 [...] – Error 403.4 redirect Http to Https Questa voce è stata pubblicata in howto, security e contrassegnata con https, iis, openssl, ssl. [...] [...] – Error 403.4 redirect Http to Https Questa voce è stata pubblicata in howto, security e contrassegnata con https, iis, openssl, ssl. [...]

]]> By: Jay Vazquez http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/comment-page-1/#comment-1105 Jay Vazquez Tue, 11 Jan 2011 10:44:45 +0000 http://www.jppinto.com/?p=26#comment-1105 Excellent article, thanks for posting it. I’m sure it has helped a lot of people; it was exactly what we needed. Excellent article, thanks for posting it.

I’m sure it has helped a lot of people; it was exactly what we needed.

]]> By: Sam http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/comment-page-1/#comment-1083 Sam Thu, 09 Dec 2010 14:49:22 +0000 http://www.jppinto.com/?p=26#comment-1083 Guys, just wondering why you would rather make the site crash/bug/fail, catch the error, put a javascript in there and redirect... when ISS has a builtin function to redirect sites... - Create a site on port80 (let's say "MySite-Redirect), go in the properties, set the home page tab with "Redirect to this URL" = <a href="https://www.whateversitename.com" rel="nofollow">https://www.whateversitename.com</a> - Create another site (let's say "MySite-SSL"), on port443 to answer the request Just a thought Guys, just wondering why you would rather make the site crash/bug/fail, catch the error, put a javascript in there and redirect… when ISS has a builtin function to redirect sites…

- Create a site on port80 (let's say "MySite-Redirect), go in the properties, set the home page tab with "Redirect to this URL" = https://www.whateversitename.com
- Create another site (let's say "MySite-SSL"), on port443 to answer the request

Just a thought

]]> By: John McIntosh http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/comment-page-1/#comment-257 John McIntosh Mon, 12 Jul 2010 12:27:49 +0000 http://www.jppinto.com/?p=26#comment-257 This was EXACTLY what I needed. Thank you very much. This was EXACTLY what I needed. Thank you very much.

]]> By: Bill Powell http://www.jppinto.com/2009/01/automatically-redirect-http-requests-to-https-on-iis-6/comment-page-1/#comment-173 Bill Powell Mon, 07 Jun 2010 16:46:32 +0000 http://www.jppinto.com/?p=26#comment-173 You may want to add "+window.location.search" to the end of the httpURL variable. Our application sends out notifications with search terms. Users complained that pre SSL notifications did not work until I added this. Thanks for excellent article. You may want to add "+window.location.search" to the end of the httpURL variable. Our application sends out notifications with search terms. Users complained that pre SSL notifications did not work until I added this.

Thanks for excellent article.

]]>