Configuring SSL bridging (HTTPS to HTTPS) with ISA Server 2000

To configure your servers for SSL bridging: SSL termination, you need:

  1. One or more servers running Microsoft Windows SharePoint Services.
  2. One or more devices to act as a reverse proxy server, such as a computer running Microsoft Internet Security and Acceleration (ISA) Server 2000.
  3. A public DNS server.
  4. An SSL certificate for your proxy server.
  5. An SSL certificate for your servers running Windows SharePoint Services (each server must use the same SSL certificate).

 Important    The following configuration steps assume that you are using ISA Server 2000, Service Pack 1 or later, as your reverse proxy server and that you have set it up in integrated mode and that ISA Server 2000 Feature Pack 1 is installed.

The process of configuring SSL bridging consists of the following steps:

  1. Install and configure your server farm to run Windows SharePoint Services.
  2. Install an SSL certificate on the server or servers running Windows SharePoint Services in your server farm.
  3. Create a new public DNS entry to map your public fully qualified domain name (FQDN) to the IP address you will use on the public interface of your reverse proxy server.
  4. Configure the network interfaces in the proxy server to respond to the appropriate IP addresses.
  5. Install an SSL certificate on the reverse proxy server.
  6. Configure the proxy server/firewall to allow Windows SharePoint Services to make connections to the Internet when necessary.
  7. Edit your Web.config file to allow Windows SharePoint Services to make connections through the proxy server to the Internet when necessary.
  8. Configure the proxy server to listen for requests on IP addresses.
  9. Create a destination set.
  10. Create a Web publishing rule.
 
 
Applies to:
Deployment Center 2003