Configuring Secure Web Services

This procedure describes how you can use specific binding names in the endpoints (specified in the procedure) to configure the CCF Web services to use HTTPS.

To convert HTTP-based Web services to https secured Web services

1. Open the Wwwroot folder in the location <InstallDir**>:\Inetpub\**. The wwwroot folder contains the folders for CCF Web services.

2. Double-click the folder for the Web service you want to convert.

3. Double-click the Web.config file. This should open the folder in a text editor.

4. Locate the list of endpoints in the <client>...</client> and <services>...</services> sections of the file. In each <endpoint address>, change http to https.

5. In the address in the <appSettings>...</appSettings> section, change http to https.

6. In each endpoint, change the binding reference from Binding1 to Binding2. For example, <bindingConfiguration="Binding2". These binding references are pre-defined in CCF.

7. Note

   If the AgentLoginManager Web service is to run anonymously, use the binding name Binding2Anon and change the client credential type to clientCredentialType="None".

8. Save the Web.config file.

9. Repeat steps 2 – 7 to alter the endpoint addresses and binding references in any other Web services that must be run securely.

10. You can use the Admin Console to alter the Web service URLs in the database, as follows:

11. 1. Open the CCF Admin Console, and then expand the <machineName> node.
    2. Expand the Settings, then the Configurations nodes.
    3. Double-click the URL you want to change; this opens the Properties window.
    4. In the Value section of the Properties window, change http to https, and then click OK.
    5. Repeat steps a through d for each URL that you want to change.

You do not need to change all Web services to HTTPS. You can change only those Web services that require increased security. However, you must make the changes on the servers and on the client machines.