HTTPS Required -- iis security

RAJ
3/22/2007 4:25:03 PM

Hello,
I have a website with a third party SSL cert installed. Require SSL in
configured on the site. My problem is if someone types www.preferredipa.com
in a browser they get the following message:

HTTP Error 403
403.4 Forbidden: SSL required
This error indicates that the page you are trying to access is secured with
Secure Sockets Layer (SSL). In order to view it, you need to enable SSL by
typing "https://" at the beginning of the address you are attempting to reach.
Please contact the Web server's administrator if the problem persists.

If https:// is used the site comes up fine. How can I get the site to
appear if one simply types in www.preferredipa.com
My second problem is this website is hosted w/ Network Solutions and because
of this I'm unable to obtain any info on IIS version... and they are of no
help with trying to solve this problem. Please advise.

Thank you in advance.

RAJ
--

David Wang
3/22/2007 8:55:26 PM

This happens because when you type www.prefferredipa.com, the browser
tries via HTTP -- and since website has "require SSL", this plain HTTP
request will be rejected with 403.4.

You should ask your webhoster to configure your website to
automatically redirect from HTTP to HTTPS -- because they have to
reconfigure the 403.4 Custom Error in IIS for you since you do not
have such access to IIS -- so they should have the standard HTTP-to-
HTTPS redirection code already. If not, you can search the web for it
and have them configure it for you.

//David
http://w3-4u.blogspot.com
http://blogs.msdn.com/David.Wang
//

You must redirect from HTTP to HTTPS with a Custom Error page on
403.4.
[quoted text, click to view]

iis security : HTTPS Required