How to: Configure Secure Socket Layer on Web Services
To increase security, use Hypertext Transfer Protocol over Secure Sockets Layer (https) on the document, management, logging and deployment service of Microsoft Dynamics Mobile - Server Components. During Microsoft Dynamics Mobile - Server Components installation, you can choose to enable or disable SSL on the services. Use the procedures in this topic to enable or disable SSL on the services by changing the web.config file after installation.
To use SSL on the services, you must do two things:
Enable SSL on the service's virtual directory in IIS 6.0 or IIS 7.0.
Using SSL requires an SSL certificate. For more information, see SSL Certificates.
Enable SSL in the service's web.config file.
To enable SSL on a service's virtual directory in IIS 6.0
In IIS Manager, double-click the local computer, and then double-click the Web Sites folder.
Right-click the Web site or file that you want to enable with SSL, and then click Properties.
Under Web site identification, click Advanced.
In the Advanced Web site identification box, under Multiple identities for this Web site, verify that the Web site IP address is assigned to port 443, the default port for secure communications. Click OK.
On the Directory Security or File Security tab, under Secure communications, click Edit.
In the Secure Communications box, select the Require secure channel (SSL) check box.
For more information, see Configuring SSL on a Web Server or Web Site (IIS 6.0).
To enable SSL on a service's virtual directory in IIS 7.0
Open IIS Manager and navigate to the Web site for the service that you want to enable SSL.
In Features View, double-click SSL Settings.
On the SSL Settings page, select the Require SSL check box.
In the Actions pane, click Apply.
For more information, see IIS 7.0: Configuring Secure Socket Layer.
To enable or disable SSL in service's web.config file
Using Visual Studio 2008 or any text editor, open the web.config file for the service.
The web.config file is found in the web root folder for the service, such as C:\inetpub\wwwroot\DocumentService.
<security>element that is found within the
<basicHttpBinding>as shown in the following example.
<basicHttpBinding> <binding maxReceivedMessageSize="512000" name="BasicHttpBinding"> <readerQuotas maxStringContentLength="512000"></readerQuotas> <security mode="TransportCredentialOnly|Transport"> <transport clientCredentialType="Windows"></transport> </security> </binding> </basicHttpBinding>
The web.config file for the management service contains two
To enable SSL, set the
modeattribute to Transport. To disable SSL, set the
TransportCreditOnly. For the management service, set the
modeattribute in both
Save the web.config file.