Wednesday, July 1, 2015

SDL Tridion: How to enable SSL (Secure Sockets Layer) in a .net deployer?

This article assumes that you have a valid SSL certificate ready. Below you can find the steps that are required to be able to successfully publish to a HTTS deployer that has SSL enabled. 

Open IIS and navigate to your deployer website and, in the ‘Features’ view select ‘SSL Settings’;

Check the box ‘Require SSL’ and in the ‘Client Certificates’ choose Accept.



Add a new HTTPS Binding to your deployer:
a. Select Type: https;
b. By default, it will assign port 443, change it if desired;
c. Fill in the hostname;
d. In the SSL Certificate, add the certificate you have created.


Select again your HTTP deployer application and, in the ‘Features View’, select ‘Authentication’ and ensure that only ‘Basic Authentication’ is enabled.


Open the web.config of your deployer and ensure to add this section inside the<configuration> element:

<system.serviceModel>
                   <bindings>
                   <binding name="HttpsBinding" maxReceivedMessageSize="2097152" maxBufferSize="2097152">
                   <readerQuotas maxArrayLength="81920" maxBytesPerRead="5120" maxDepth="32" maxNameTableCharCount="81920" maxStringContentLength="2097152" />
                   <security mode="Transport">
                       <transport clientCredentialType="None" />
                   </security>
               </binding>
                     </bindings>
                 </system.serviceModel>

Import your certificate as mentioned in the SDL Tridion Docs

Restart your Transport Service and the Deployer application.

Test that you can access the new https upload page by opening the browser and typing: https://servername:443/httpupload.aspx

If this works, you are now ready to add your new HTTPS publication target and to start publishing!

No comments: