SSL and ASP.net questions

[Cliff Harris]

I have a couple of SSL questions.
First:
If I would like to protect my entire website by ensuring that all pages are
accessed using SSL ([url]https://)[/url]
How would I force that? Would that be an ASP.net config thing, or a
configuration in IIS?

Second:
If I would only like specific pages protected using SSL, but I do _not_ want
to lost my session between
secure and unsecure requests, is there a way to do that? Can it be
accomplished using Server.Transfer or
something?

Oh, and if possible, .Net 1.0 answers would be helpful, but 1.1 is ok too :)

Any help would be appreciated. THanks

-Clint

[Johan Normén NSQAURED2]

Hi,

First off all, you need to setup the SSL option in IIS,
and also create one certificate for this.
Then let the peoples download and install this
Certificate on there server. You can buy one certificate
that is compatible with one of them in IE.
Second:
No you can't get your sessions in the different modes.
What I remember, I'm not sure how the InProc mode work,
Se Session settings in Web.Config,
But you can jump from SSL secure pages to none SSL secure
pages without any problem.

JN

>-----Original Message-----
>I have a couple of SSL questions.
>First:
>If I would like to protect my entire website by ensuring

that all pages are

>accessed using SSL ([url]https://)[/url]
>How would I force that? Would that be an ASP.net config

thing, or a

>configuration in IIS?
>
>Second:
>If I would only like specific pages protected using SSL,

but I do _not_ want

>to lost my session between
>secure and unsecure requests, is there a way to do

that? Can it be

>accomplished using Server.Transfer or
>something?
>
>Oh, and if possible, .Net 1.0 answers would be helpful,

but 1.1 is ok too :)

>
>Any help would be appreciated. THanks
>
>-Clint
>
>
>.
>