+ Post New Thread
Results 1 to 8 of 8
Internet Related/Filtering/Firewall Thread, IIS problems http to https redirection in Technical; Right. We have Serco Facility and ePortal. I've got external accss up and running, using a reverse proxy sorted out ...
  1. #1

    Join Date
    Mar 2008
    Location
    Norfolk
    Posts
    227
    Thank Post
    5
    Thanked 10 Times in 8 Posts
    Rep Power
    21

    IIS problems http to https redirection

    Right. We have Serco Facility and ePortal. I've got external accss up and running, using a reverse proxy sorted out by county. I've got IIS set up so that requests to http://school.LEA.org.uk go straight to the ePortal folder. What I'm trying to do now is set things up so that, not only is SSL required, but users are redirected to an SSL version of sPortal automatically.

    Can i get this to work? No i can't.

    I've tried creating a custom asp or html pages containing either redirection code gleened from various sources, set these as the error page for the http 403.4 error as advised, and set SSL access only on the relevant websites.

    At best I get a 401 (page not found error); at worst I see actual asp code displayed on screen and not parsed correctly.

    Currently I'm trying a htm page with javascript to redirect. Accessing eportal with http://servername gets me the 401 page (doing this without the SSL/redirection set up gets me to http://servername/eportal fine).

    Any clues? Obviously i want SSL setup and working before we start letting anyone access from offsite..
    Last edited by cheredenine; 25th February 2009 at 11:44 AM.

  2. #2

    Join Date
    Mar 2008
    Location
    Surrey
    Posts
    2,168
    Thank Post
    98
    Thanked 319 Times in 261 Posts
    Blog Entries
    4
    Rep Power
    113
    Quote Originally Posted by cheredenine View Post
    Right. We have Serco Facility and ePortal. I've got external accss up and running, using a reverse proxy sorted out by county. I've got IIS set up so that requests to OpenDNS go straight to the ePortal folder. What I'm trying to do now is set things up so that, not only is SSL required, but users are redirected to an SSL version of sPortal automatically.

    Can i get this to work? No i can't.

    I've tried creating a custom asp or html pages containing either redirection code gleened from various sources, set these as the error page for the http 403.4 error as advised, and set SSL access only on the relevant websites.

    At best I get a 401 (page not found error); at worst I see actual asp code displayed on screen and not parsed correctly.

    Currently I'm trying a htm page with javascript to redirect. Accessing eportal with EduGeek.net gets me the 401 page (doing this without the SSL/redirection set up gets me to http://servername/eportal fine).

    Any clues? Obviously i want SSL setup and working before we start letting anyone access from offsite..
    401 isn't a page not found error, that'd be 404. Usually 401 is to do with authentication.

    The HTTP status codes in IIS 7.0 - IIS HTTP status errors.

    If you're getting the 401 error, check the authentication methods you're permitting.

  3. #3

    Join Date
    Mar 2008
    Location
    Norfolk
    Posts
    227
    Thank Post
    5
    Thanked 10 Times in 8 Posts
    Rep Power
    21
    My mistake its a 403 error - but i can't work out quite which one as it doesn't seem to match any of the template error pages on the server. All the template 403 errors on the server have the .xx number to specify the specific reason and theres one generic 403 page, but none seem to match what i'm getting..

  4. #4

    Join Date
    Mar 2008
    Location
    Surrey
    Posts
    2,168
    Thank Post
    98
    Thanked 319 Times in 261 Posts
    Blog Entries
    4
    Rep Power
    113
    Quote Originally Posted by cheredenine View Post
    My mistake its a 403 error - but i can't work out quite which one as it doesn't seem to match any of the template error pages on the server. All the template 403 errors on the server have the .xx number to specify the specific reason and theres one generic 403 page, but none seem to match what i'm getting..
    If you check the IIS logs for the site it should give you the full error, including the substatus. It'll also tell you exactly what caused the error, since 403 describes some sort of forbidden action on the part of the client.

    If its 403.4 then SSL is being required, and its forbidding access without it. 403.5 would be 128 bit SSL required.

    Other possibilities which I can think of would be 403.7 (requires client certificate), 403.13 (client certificate has been revoked), or any of the others listed on the Microsoft KB article.

  5. #5

    Join Date
    Mar 2008
    Location
    Norfolk
    Posts
    227
    Thank Post
    5
    Thanked 10 Times in 8 Posts
    Rep Power
    21
    Right, from the IIS logs relevant to today and my test machine, i get a 403 error under the cs(User-Agent) heading, then a 4 under sc-status and a 5 under sc-substatus. Not sure if the latter two headings are linked to the first, but can't see anywhere else where a more detailed list of the error exists.

  6. #6

    Join Date
    Mar 2008
    Location
    Surrey
    Posts
    2,168
    Thank Post
    98
    Thanked 319 Times in 261 Posts
    Blog Entries
    4
    Rep Power
    113
    By the looks of it in that case, your redirection page is requiring SSL. Since its not an SSL site, its then refusing to service the client's request.

    On the plus side, your SSL is working.

  7. #7

    Join Date
    Mar 2008
    Location
    Norfolk
    Posts
    227
    Thank Post
    5
    Thanked 10 Times in 8 Posts
    Rep Power
    21
    Just went back to it, took another look, required SSL on the default website, switched the SSL requirement off for the redirect page and BAM! it works.

    But, but, but... This is what i did before, i'm positive! I think it was just being difficult and playing hard to get until i was forced to ask questions about it online. Bloomin' thing.

    Thanks for your help!

  8. #8
    Jay
    Jay is offline

    Join Date
    Mar 2008
    Location
    Autocratic theocracy of Norfolk
    Posts
    71
    Thank Post
    3
    Thanked 4 Times in 4 Posts
    Rep Power
    14
    A better way would be to rewrite the custom error page to redirect, or (if the 403 error code permits a URL) simply send the user to the https page.

    By turning off "Require SSL", users could remove the s from https and get unencrypted access (why they would I don't know, but they could).

    J

SHARE:
+ Post New Thread

Similar Threads

  1. Replies: 1
    Last Post: 12th December 2008, 03:10 PM
  2. Problems logging in with HTTPS - moodle
    By timbo343 in forum Virtual Learning Platforms
    Replies: 10
    Last Post: 12th February 2008, 09:59 AM
  3. IIS Problems.
    By boomam in forum Wireless Networks
    Replies: 10
    Last Post: 16th January 2008, 06:11 PM
  4. RDP over HTTP / HTTPS
    By GrumbleDook in forum Windows
    Replies: 2
    Last Post: 3rd September 2006, 09:37 PM
  5. Random Folder Redirection Problems
    By ken_kaniff in forum Windows
    Replies: 8
    Last Post: 4th January 2006, 05:18 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •