As part of development activities we might need to create an SSL enabled site inside SharePoint 2010. These sites will be accessed using HTTPS instead of HTTP.
HTTPS is the secured way of communication between server and client. Here the message is encrypted between client and
server. An encryption mechanism is needed protect the message from being manipulated
by unwanted parties.
HTTPS works by installing a certificate in
the server side web application. This certificate is used to encrypt the
messages between client and server. The encryption is based on a public key
and private key usage. The public key will be shared with client for
encrypting the message and the decryption is performed on the server side using
the private key.
Note: Stealing the public key does not do any favour in decrypting the message using Man In the Middle attack as Public key can only be used for encryption.
Please following the steps given below to create a new SSL enabled SharePoint site.
Step 1: Create
New Web Application
Go to Central Administration and open the
Manage Web Applications link. Create a new Web Application with the following
- Name as My Secured Site
- Use Secured Sockets Layer (SSL) Yes
Click the OK button to create the new web application.
Now add a new site collection inside the newly created web application.
Central Administration > Create Sitecollection > Choose current web application
Step 2: Set the Certificate
For SSL enabling you need to specify a Certificate in the Server which contains the public and private keys. Go to
Internet Information Services (IIS / inetmgr.exe) and select the newly created site. Click on the Bindings link from the right side.
In the appearing dialog select the https item and click the Edit button.
In the appearing dialog select the
Certificate from drop down list.
Click the OK button to continue.
Step 3: Test the URL.
Now you are ready to test the HTTPS url.
Open a browser and enter the url of the web site. You can also you the Browse
link from IIS.
You will get the page as shown below. It
says the certificate is not trusted one. You can use the Continue link
to proceed with.
Now you should be prompted with the site
credentials. Enter the credentials to continue and you should get the site
collection which you have created.
Wow! If you can see the above site then you
are done with your SSL enabled site. Please note that the URL now starts with https.
Adding SSL (https) support to an existing web application
You can add SSL support to an existing web application by performing the following:
- Open IIS manager
- Select the web application
- Choose Bindings dialog
- Add new binding of type https
- Select the Certificate
- Click the OK button
In this article we have seen how to enable SSL on a SharePoint site. I hope you were able to create a successful SSL enable SharePoint site.
- MSDN on SharePoint SSL
- SSL, Public Key, Private Key