Configuring LiveCompare to Run Using HTTPS/SSL
HTTPS is a secure communications channel that uses Secure Sockets Layer (SSL). Configuring LiveCompare to run using HTTPS/SSL involves the following steps.
For this Help topic, these steps were performed using IIS 7.
Configuring your Web Server for HTTPS/SSL
To enable SSL in IIS on the LiveCompare server, you must first obtain and install a certificate that is used to encrypt and decrypt the information that is transferred over the network. This can be done as follows. Note that the steps in this section should be skipped if you have already obtained and installed a certificate for your LiveCompare server.
Obtaining a Certificate
To obtain an SSL certificate, carry out the following steps.
- Start Internet Information Services Manager, and select the server in the Connections pane.
- Double-click ‘Server Certificates’ in the IIS section of the server home page.
- Click ‘Create Certificate Request…’ in the Actions pane. The following dialog is displayed.
- Complete the dialog fields as follows:
| Field | Description |
|---|---|
| Common name | The fully-qualified domain name (for example, www.yourdomain.com). |
| Organization | Your company’s registered name. |
| Organizational unit | Your department name. |
| City/locality | The city where your company is legally located. |
| State/province | The state or province where your company is legally located. |
| Country/region | The country or region where your company is located. |
- Click ‘Next’ to display the following dialog screen.
- Complete the dialog fields as follows:
| Field | Description |
|---|---|
| Cryptographic service provider | Select ‘Microsoft RSA SChannel Cryptographic Provider’ (unless you have a specific cryptographic provider). |
| Bit length | Select 2048 (unless you have a specific reason for using a larger bit length). |
- Click ‘Next’ to display the following dialog screen.
- Click
and specify the directory location and filename for the certificate signing request. The filename should have a .txt extension, for example, csr.txt.
- Use the certificate request to obtain a certificate from a signing authority.
Installing the Certificate
Once you have obtained a certificate, carry out the following steps to install it on the server on which the certificate signing request file was created.
- Start Internet Information Services Manager, select the server in the Connections pane, and double-click ‘Server Certificates’ in the IIS section of the server home page.
- Click ‘Complete Certificate Request…’ in the Actions pane. The following dialog is displayed.
- Complete the dialog fields as follows:
| Field | Description |
|---|---|
| File name containing the certification authority’s response | Click and browse for the certificate file provided by the certificate provider. |
| Friendly name | Enter a descriptive name used to identify the certificate, for example, yourdomain.com. |
- Click ‘OK’ to install the certificate.
Configuring the LiveCompare Web Site to Use HTTPS/SSL
To configure the LiveCompare web site to use HTTPS/SSL, carry out the following steps.
- Start Internet Information Services Manager. Expand the Sites folder and select the site you wish to secure using the SSL certificate.
- Double-click ‘SSL Settings’ in the IIS section of the server home page.
- Select the ‘Require SSL’ check box, and then select ‘Ignore’ to allow users to connect to the LiveCompare web site without supplying their own certificate.
Secure Session Cookies
To set the secure attribute on the ASP.NET_SessionId cookie, carry out the following steps:
- Edit the <LiveCompare install dir>\web\apps\web.config file using a text editor.
- Change the line which reads:
<httpCookies httpOnlyCookies="true" />
to:
<httpCookies httpOnlyCookies="true" requireSSL="true" />