Small width layout Medium width layout Maximum width layout Small text Medium text Large text
     Search
Downloads Downloads Directory Directory Forums Forums Forge Forge Blogs Blogs        Marketplace Marketplace Careers Program Careers
Community › Forums Register  |  

AppTheory specializes in solutions based on the DotNetNuke platform and has 2 employees on the DotNetNuke Core Team.
  Ads  
r2i.ntegrated
 


  Sponsors  

Meet Our Sponsors

ExactTarget email software solutions
Merak Mail Server
WebSecureStores -- ASP.NET & DotNetNuke Hosting Solutions
FCKeditor Project
Salaro -- Skins and more
OnyakTech
 


DotNetNuke Forums
 
  Forum  DotNetNuke® Pro...  Authentication ...  Securing Login and User Account Managment
Previous Previous
 
Next Next
New Post 7/17/2008 2:13 AM
Unresolved
User is offline blazing-biz.com
7 posts
10th Ranked


Securing Login and User Account Managment 

I've installed DNN 4.8 I have everything up and running and it works great. I have set up 3 portals, the main one and two others. I have the Authentication module working in it's default place and the default user management set up.

I have a windows 2003 web server with IIS 6 in place and I have DNN set up on it's own IP address with it's own database and worker process group (application pool), for DNS I point the domain names of the three portals to the IP address for DNN virtual web site and use host headers to accept those domain names in that web site tree within the IIS 6 MMC. This all works fine when typing in the the url going to each site and using the Login module and user profile mangement module, each site's members are good for each site but not each other, the accounts do not cross.

So I want to set up an https connection for the login page and the user profile management pages, I have installed a test certificate on my IIS server for this web site which has it's dedicated IP address for the DNN virtual directory, that went fine.

The cert is set up for the domain name of the main DNN portal. How can I set up https connections for all of the portals' login and user profile management pages. Will the single IP address and various domain names for each portal create an issue?

Is there a way to set up each login and user management page to use a https connection for every DNN portal with seperate domain names for each even though they all reside on one IP address with the cert domain name being one ofthe portal domain names but being different from the others?

Thanks
 
New Post 7/17/2008 8:50 AM
User is offline Mike Horton
3163 posts
dnn.gmss.org
4th Ranked






Re: Securing Login and User Account Managment 

Are the domain names completely different? I mean like http://www.domainA.com and http://www.domainB.com vs http://www.domainA.com and http://subdomain.domainA.com? I could be wrong on this as it's not something I've handled at work but my understanding is that a certificate is good for one domain only and if there are multiple domains then a certificate needs to be in place for each of them. I don't know if the same applies to subdomains.
 
New Post 7/19/2008 9:52 PM
User is offline blazing-biz.com
7 posts
10th Ranked


Re: Securing Login and User Account Managment 

Yes the domains are all different domains, I have a test cert installed on that IP address space on my server and I'll re-configure the url resolution becuase the way I have it now I have host headers for each domain name on my DNN website on IIS 6, but after reading up on portal set up in DNN it seems that I should only have the host header for the main portal set up on that IIS website and let the DNN name resolution do the work for the other domain names through the Portal Management section of the Host admin.

After I set this up, I'll see how the test cert behaves when I try to use a https connection for each site, then report back here what I find.

Is there a way to make sure the Login page and User Management page uses a https connection using the default locations? I have it all working and don't want to change things too much, so if I can set something in the admin that makes sure the login and user profile pages for each portal uses a https connection without making it redirect to another url I'd like to do it that way, if anyone can point me in the right direction with how to do that.

Thanks
 
 Page 1 of 1
Previous Previous
 
Next Next
  Forum  DotNetNuke® Pro...  Authentication ...  Securing Login and User Account Managment
 


Forum Policy

These Discussion Forums are dedicated to the discussion of the DotNetNuke Web Application Framework.

For the benefit of the community and to protect the integrity of the project, please observe the following posting guidelines:

1. No Advertising. This includes promotion of commercial and non-commercial products or services which are not directly related to DotNetNuke.
2. Discussion or promotion of DotNetNuke product releases under a different brand name are strictly prohibited.
3. No Flaming or Trolling.
4. No Profanity, Racism, or Prejudice.
5. Site Moderators have the final word on approving/removing a thread or post or comment.
6. English language posting only, please.
 


Integral Hosting | DNN only $14.95/month
Experienced .NET hosting on Windows 2003, ASP.NET 1.1 & 2.0, MSSQL with real technical support.
www.integralhosting.com 		Aricie
Aricie is one of the French pioneers and experts in DotNetNuke technology.
www.aricie.com 		AFUEGO!
Looking for Free DNN Hosting?
www.AFUEGO.com

DotNetNuke Corporation   Terms Of Use  Privacy Statement
DotNetNuke®, DNN®, and the DotNetNuke logo are trademarks of DotNetNuke Corporation
Hosted by MaximumASP