IIS 7 Require SSL automatically redirect to https://

https security-certificate iis7
37,175

Solution 1

There are a few ways you can do this but if you have the URL Rewrite Module installed, it's fairly easy and a good way to do it.

You can paste the below configuration into your site's web.config file (enclosed in the <system.webServer></system.webServer> section)

<configuration>
<system.webServer>
<rewrite>  
  <rules> 
   <rule name="https redirect">      
      <match url="(.*)" ignoreCase="false" />     
         <conditions>        
            <add input="{HTTPS}" pattern="off" ignoreCase="false" />      
         </conditions>      
      <action type="Redirect" redirectType="Found" url="https://{HTTP_HOST}{REQUEST_URI}" />    
   </rule>  
  </rules>
</rewrite>
</system.webServer>
</configuration>

OR you can use the IIS's UI to make a new rule like in the below screenshot.

Screenshot of IIS rewrite rule for redirecting http traffic to https.

Solution 2

First, you need to disable 'Require SSL' in SSL Settings. Then you can follow Scott's solution.

RuslanY Blog's blog has a bunch of useful rules for IIS: 10 URL Rewriting Tips and Tricks

Solution 3

You could also use UrlRewriter.NET. The rules to use with that, look like this:

<rewriter>
    <if header="HTTPS" match="^OFF$">
        <redirect url="(.*)" to="https://yourdomain.example$1"/>
    </if>
</rewriter>
Share:
37,175
venky
Author by

venky

Updated on September 18, 2022

Comments

  • venky
    venky over 1 year

    I've configured IIS 7 to require SSL. Can I automatically redirect non-SSL requests to be encrypted?

    For example, if a user types in http://domain.example, can IIS redirect the request to https://domain.example rather than display the 403 error page?

  • Dez Udezue
    Dez Udezue about 7 years
    What does the off signify? this answer works btw
  • Admin
    Admin almost 2 years
    Ah! What you gave for the web.config was perfect. I put that in my configs and everything went exactly how I wanted. I know we aren't supposed to say thanks in comments, so I'm doing by saying that it works wonderfully!

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Port numbers for SSL
Avoiding SSL certificate errors with Amazon S3 subdomain
SSL not working on home page
How can I set the default page for an https request?
How to avoid SSL warnings about certificate not for the current site when redirecting alternate domains?
Does SSL require a client side certificate of any kind at all?
StartSSL certificate gives SEC_ERROR_REVOKED_CERTIFICATE in Firefox and ERR_CERT_AUTHORITY_INVALID in Chrome
In what path I can find the .crt file for Let's Encrypt SSL?
Performance: 4096 Bit RSA-Key compared to 2048 bit RSA-Key
How do I get my site verified such that it shows a green box in Chrome's address bar?