Enabling HTTPS


Topic Last Modified: 2010-11-23

By default, the Microsoft Forefront Protection Server Management Console (FPSMC) uses HTTP. However, the FPSMC can be configured to use HTTPS.

HTTPS is a secure communications channel that is used to exchange information between a client computer and a server. It uses Secure Sockets Layer (SSL). You can use HTTPS to provide a secure connection to the FPSMC.

Before you can enable HTTPS for the FPSMC, you must obtain a certificate. It is recommended that you only using certificates from a Certification Authority, rather than self-signed certificates.

For more information about certificates, see Active Directory Certificate Services (http://go.microsoft.com/fwlink/?LinkId=179761).

To configure the FPSMC for HTTPS
  1. Click Start, select Administrative Tools, and click Internet Information Services (IIS) to open the Internet Information Services Manager.

  2. Select the Default Web Site located in the Connections pane.

  3. In the Actions pane, select Bindings. The Site Bindings dialog box appears.

  4. Click Add to open the Add Site Binding dialog box.

  5. Select https from the Type drop-down menu.

  6. Verify that the specified Port is 443 and then select the appropriate certificate from the SSL certificate drop-down menu. Click OK.

  7. Click Close to close the Site Bindings dialog box.

  8. In the details pane, double-click SSL Settings.

  9. Select the Require SSL option and under Client Certificates select Require.

  10. In the Actions pane, click Apply.

  11. Close the IIS console.

    Once HTTPS has been enabled, you must configure the FPSMC shortcut to open as https://localhost/FPSMConsole/Default.aspx, rather than http://localhost/FPSMConsole/Default.aspx.
  12. Click Start, click All Programs, click Microsoft Forefront Protection Server, and then right-click Forefront Protection Server Management Console. The Forefront Protection Server Management Console Properties dialog box appears.

  13. Click the Web Document tab.

  14. Change the URL to https://localhost/FPSMConsole/Default.aspx.

To launch the console remotely with HTTPS enabled, open your Internet browser and enter the remote server name, followed by /FPSMConsole. For example, to remotely access the FPSMC on a server named FPSMCServer, enter https://FPSMCServer/FPSMConsole.