Enabling HTTPS for Access Management running as an IIS website
When Access Management is installed as a Microsoft Internet Information Service (IIS) website, enabling HTTPS involves adding HTTPS binding and selecting a certificate. The process is the same as for creating any other website in IIS except that you must also define the identity provider.
Before you begin
This task assumes the following:
- Access Management is installed and running in IIS, but it is currently unsecured.
- You have a signed certificate, either issued from an certificate authority (CA) or self-signed.
Procedure
- Open IIS Manager.
- From the Sites node in the Connections pane, locate the Access Management website.
- Open the Site Bindings for editing.
- Change the following settings for Bindings:
- Change the Type from
httptohttps. - Change the Port to whatever you prefer to use for the HTTPS connection.
- Select your signed SSL certificate.
- Change the Type from
- From the list of Application Pools, locate the application pool for Access Management, and open the Advanced Settings.
- Locate the setting for Identity, and select the NetworkService identity.
- Confirm and close all IIS Manager windows and the IIS Manager.
Results
Access Management is now configured for a secure HTTPS connection.
What to do next
If the configuration defines both HTTP and HTTPS endpoints, you need to configure redirection to HTTPS. You can configure it manually, or you can use a redirection extension to do the redirection.