Configuring Secure CCF Client Applications

  • Article

This procedure describes how you can use specific binding names in the endpoints (specified in the procedure) to configure the CCF client applications (ID and MMC) to use HTTPS.

To convert HTTP-based client applications to HTTPS secured applications

  1. Open the AgentDesktop.exe.config file in a text editor, such as Notepad. The AgentDesktop.exe.config file is located in the AgentDesktop folder, typically in the location <InstallDir>:\Program Files\Microsoft CCF 2009\AgentDesktop.

  2. In the <client>...</client> section of the file, there is a list of endpoints. In each <endpoint address, change http to https.

  3. In each endpoint, change the binding reference from Binding1 to Binding2. For example, <bindingConfiguration="Binding2". These binding references are pre-defined in CCF.

  4. Note

    If ID is running anonymously, use the binding name Binding2Anon and change the client credential type to clientCredentialType="None".

  5. In the address in the <appSettings>...</appSettings> section, change http to https.

Use the same procedure to alter the endpoint addresses and binding references in the Mmc.exe.config file. This file is in the Administrative Tools folder in the locations <InstallDir>\Program Files\Microsoft CCF 2009\ and <installDir>\WINDOWS\System32

Note

The Mmc.exe.config file has the IIS server name pre-configured as CCFIIS; for example, endpoint address="https://ccfiis/. If the IIS server name is different, change this value in all of the endpoints in the <client.../client> section.
The CCF installers place the Mmc.exe.config file in the System32 and Administrative Tools folders. If, at any time, CCF is reinstalled or updated, the Mmc.exe.config file must be copied from the Administrative Tools folder to the System32 folder.
When Admin Console prompts for a host name and port, it will override the port number for every Web service endpoint if you provide a port number. This will cause problems if you have a mix of HTTP-based and HTTPS-based Web services. You should leave the port field blank unless your circumstances require you to enter a port number.