Hi All, I want to implement SSL on each of my Sharepoint 2007 site collections. For example if i have three site collections on different ports, there will be: https://sharepointsite1 --> original url: http://sharepoint:80 https://sharepointsite2 --> original url: http://sharepoint:90 https://sharepointsite3 --> original url: http://sharepoint:100 is that possible? how to do that? what are requirements needed? Do i need to purchase SSL certificate since the sites only for internal use? I have no much knowledge in SSL implementation. Very appreciate for any helps. Thank you, Nail

you can just use ssl for each web application Not site collection. good solutions for setting ssl for moss web application http://faraz-khan.blogspot.com/2007/07/right-way-to-enable-ssl-on-moss-web.html

Hi Nail, If I understand well, you want to change three existing web application from http to https. The procedure to do that is available on technet : http://technet.microsoft.com/en-us/library/cc262366(office.12).aspx Hope it helps you, MarioMon Blog/My Blog (in french) LinkedIn

Hi Mario, Thanks for the reply. However i'm little bit confuse. If i type "Sharepoint1" as host header for my web application http://Sharepoint:80, do i need to create a dns name for this? Thanks, Nail

I hope that all these are running under the same web application. I'm not 100% certain but I think if you try to have more than one web applications running ssl you might run into problems if you dont have a network card per ssl web app. Since ssl runs on port 443 I think the cert binds the site to the network interface and you can't have more than one per physical interface. [actually think you can with wildcard cert ] http://cregan.wordpress.com/2008/04/11/more-than-1-ssl-secured-sharepoint-site-on-1-ip-address-in-iis7/ Basically in central administration you'll want to extend your web application out and specify SSL, you would then go into IIS and attach your ssl cert. This can be self signed cert however you will get a security warning each time you hit the site. You may have seen it before it simply says that the cert is not issued from a trusted source. And yes when you create a host header you can't actually hit the site from it until a DNS record is added. gl! -tom daly

Hi Thomas, I am using IIS6. is it possible?

Hi Nail, Yes you need to create a dns name. Hope it helps you, MarioMon Blog/My Blog (in french) LinkedIn