ChipPC - Xcalibur W Wiki

For Server 2.14.x & Agent 2.14.x

User Tools

Site Tools


installation_guide:server_software_installation:manual_installation:forbid_http_access

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

installation_guide:server_software_installation:manual_installation:forbid_http_access [2016/05/11 13:48]
wpwiki
installation_guide:server_software_installation:manual_installation:forbid_http_access [2018/03/19 13:02] (current)
Line 3: Line 3:
  
  
-By default, Administrator can log in to the **proVconnect** server using either HTTP or HTTPS connection. In order to prevent from using unsecure HTTP connection, you will need to configure your IIS server to automatically redirect HTTP access attempts to HTTPS. For that purpose, the Microsoft'​s URL rewriter Module shall be install on IIS.+By default, Administrator can log in to the **Xcalibur W** server using either HTTP or HTTPS connection. In order to prevent from using unsecure HTTP connection, you will need to configure your IIS server to automatically redirect HTTP access attempts to HTTPS. For that purpose, the Microsoft'​s URL rewriter Module shall be install on IIS.
  
 You can download the URL rewriter module at: http://​www.iis.net/​downloads/​microsoft/​url-rewrite You can download the URL rewriter module at: http://​www.iis.net/​downloads/​microsoft/​url-rewrite
  
-Once installed, you need to edit and add the following lines into the **C:​\inetpub\wwwroot\provconnectMS\web.config**+Once installed, you need to edit and add the following lines into the **C:​\inetpub\wwwroot\XcaliburwMS\web.config**
  
   <​system.webServer>​   <​system.webServer>​
      <​rewrite>​      <​rewrite>​
-      ​<​rules>​+     <​rules>​
                 <clear />                 <clear />
                 <rule name="​Exclude GetCertificat url" stopProcessing="​true">​                 <rule name="​Exclude GetCertificat url" stopProcessing="​true">​
                     <match url="​^(.*)/​GetCertificat$"​ negate="​false"​ />                     <match url="​^(.*)/​GetCertificat$"​ negate="​false"​ />
-                    <​conditions logicalGrouping="​MatchAny"​ trackAllCaptures="​false"​+                    <​conditions logicalGrouping="​MatchAny"​ trackAllCaptures="​false"​ />
-                    </conditions>+
                     <action type="​None"​ />                     <action type="​None"​ />
                 </​rule>​                 </​rule>​
-        ​<rule name="​Exclude AddAgent url" stopProcessing="​true">​+                ​<rule name="​Exclude AddAgent url" stopProcessing="​true">​
                     <match url="​^(.*)/​AddAgent$"​ negate="​false"​ />                     <match url="​^(.*)/​AddAgent$"​ negate="​false"​ />
-                    <​conditions logicalGrouping="​MatchAny"​ trackAllCaptures="​false"​+                    <​conditions logicalGrouping="​MatchAny"​ trackAllCaptures="​false"​ />
-                    </conditions>+
                     <action type="​None"​ />                     <action type="​None"​ />
                 </​rule>​                 </​rule>​
-        ​<rule name="​Exclude removeAgent url" stopProcessing="​true">​+                ​<rule name="​Exclude removeAgent url" stopProcessing="​true">​
                     <match url="​^(.*)/​removeAgent$"​ negate="​false"​ />                     <match url="​^(.*)/​removeAgent$"​ negate="​false"​ />
-                    <​conditions logicalGrouping="​MatchAny"​ trackAllCaptures="​false">​ +                    <​conditions logicalGrouping="​MatchAny"​ trackAllCaptures="​false" ​/
-                    </​conditions>​+                    <action type="​None" ​/
 +                </​rule>​ 
 +                <rule name="​Exclude VNC requests"​ stopProcessing="​true">​ 
 +                    <match url="/​(.*)vnc(.*)"​ /> 
 +                    <conditions ​logicalGrouping="​MatchAll"​ trackAllCaptures="​false"​ />
                     <action type="​None"​ />                     <action type="​None"​ />
                 </​rule>​                 </​rule>​
                 <rule name="​Force HTTPS" stopProcessing="​true">​                 <rule name="​Force HTTPS" stopProcessing="​true">​
                     <match url="​(.*)"​ />                     <match url="​(.*)"​ />
-                    <​conditions>​+                    <​conditions ​logicalGrouping="​MatchAll"​ trackAllCaptures="​false"​>
                         <add input="​{HTTPS}"​ pattern="​^OFF$"​ />                         <add input="​{HTTPS}"​ pattern="​^OFF$"​ />
                     </​conditions>​                     </​conditions>​
                     <action type="​Redirect"​ url="​https://​{HTTP_HOST}/​{R:​1}"​ />                     <action type="​Redirect"​ url="​https://​{HTTP_HOST}/​{R:​1}"​ />
                 </​rule>​                 </​rule>​
-      ​</​rules>​+    ​</​rules>​
     </​rewrite>​     </​rewrite>​
   </​system.webServer>​ >   </​system.webServer>​ >
installation_guide/server_software_installation/manual_installation/forbid_http_access.txt · Last modified: 2018/03/19 13:02 (external edit)