Serco ePortal, external access and Fronter - your setup??
Firstly - our current setup:
* Serco Facility and ePortal setup on our shiney admin server.
* Facility Connect API installed so that Fronter, our up-coming VLE, can link in to gather pupil data
* SSL certificate that came with the API installed to allow access over https
* ISP has sorted out reverse proxy so eportal.schoolname.norfolk.sch.uk redirects to the IP address of a NIC on our admin server - this is to allow external access by Fronter to gather data, but also by teachers and parents from off site.
* I can set things up so that SSL is mandatory, but this shows a security warning everytime a user loads up the site. You can install the certificate, but as the name stored in the certificate doesn't match the site the warning can't be got rid of permanetly.
Now, i've considered just leaving it and not worrying - but it looks untidy; i want redirect to SSL automatically and not have alarming warnings on screen. I'm having trouble thinking of a solution that works without being a complete cludge, or potentially expensive.
I imagine i would have trouble altering the security certificate as, because of how our system works, the URL to access ePortal is different onsite and off. Presumably one or the other would still give the warning about site names not matching.
I had also thought of using a separate server for external ePortal access only with SSL set on, and ePortal on our admin server for onsite access only without SSL. I could accomplish this quite easily (i have a server i can repurpose and then its just assiging it the IP our external access URL points to), obtaining an SSL certificate thats relevant for the external URL only. The problem with this is that this would then be the server Fronter would access to gather data and i've no idea how significant the SSL certificate that was supplied with the API is to this process...
Any advice from people with the same setup, or who are otherwise well informed?