{"id":16007,"date":"2019-03-20T16:48:31","date_gmt":"2019-03-20T14:48:31","guid":{"rendered":"https:\/\/tsplus.tempsite.io\/?p=16007"},"modified":"2020-01-13T16:15:34","modified_gmt":"2020-01-13T14:15:34","slug":"enforce-https-protocol","status":"publish","type":"post","link":"https:\/\/tsplus.me\/enforce-https-protocol\/","title":{"rendered":"Enforce HTTPS protocol"},"content":{"rendered":"\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t

Standard Case<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Starting from Terminal Service Plus version 9.20, you can redirect every web request which uses HTTP to secure the HTTPS\u00a0 protocol.<\/span><\/p>

To activate this feature on a server, edit (or create) the file “C:\\Program Files (x86)\\TSplus\\Clients\\webserver\\settings.bin” and add the following line:<\/span><\/p>

disable_http_only=true\n<\/code><\/span><\/pre>
Save the file and restart Terminal Service Plus web servers (AdminTool > Web > Restart Web Servers or reread configuration by accessing http:\/\/127.0.0.1\/w0j3?settings.bin).<\/span><\/p>
Once this feature is enabled, you can try to browse to the insecure web page at:<\/span><\/p>
http:\/\/your-server\n<\/code><\/span><\/pre>
and it will automatically redirect your request to the secure Web Portal page at:<\/span><\/p>
https:\/\/your-server<\/code><\/span><\/pre>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t
Special case: Custom Web Ports<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t
If you are using a specific port to serve HTTPS, then edit the file “C:\\Program Files (x86)\\TSplus\\Clients\\webserver\\settings.bin” and use the following line instead of the line described above:<\/span><\/p>
disable_http_only=\"domain.com:4431\"\n<\/code><\/span><\/pre>
where domain.com is your own server host name and 4431 is your HTTPS custom port.<\/span><\/p>
Save the file and restart Terminal Service Plus web servers<\/a> (AdminTool > Web > Restart Web Servers).<\/span><\/p>
Once this feature is enabled, you can try to browse to the insecure web page at:<\/span><\/p>
http:\/\/domain.com\n<\/code><\/span><\/pre>
and it will automatically redirect your request to the secure Web Portal page at:<\/span><\/p>
https:\/\/domain.com:4431\n<\/code><\/span><\/pre>
Comment: Even if this is not secure but you wish to disable ssl\/https on http port then edit the settings.bin file and add: disable_ssl_on_http=true, save and restart the servers.<\/span><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t
Disable http on https<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t
By default it is allowed to access https:\/\/my-domain.com, https:\/\/my-domain.com:80, http:\/\/my-domain.com:443 So it allows http on port 443 or allow https on port 80, it does not have impact on security and makes it easy to fallback to degraded xhr-connection when no web sockets support is possible But if wished to disable it, edit the settings.bin file and add the following line:<\/span><\/p>
disable_http_on_https=true\n<\/code><\/span><\/pre>
Then restart Terminal Service Plus web servers (Admin Tool > Web > Restart Web Servers or reread configuration\u00a0<\/span><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t
HTTPS Enforcement and Free SSL Certificate Validation<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t
\n\t\t\t\n\t\t\t\t\t\t<\/span>\n\t\t<\/div>\n\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t
Please note that this HTTPS Enforcement feature is fully compatible with our\u00a0Free SSL Certificate<\/a>\u00a0feature.<\/span><\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"
Standard Case Starting from Terminal Service Plus version 9.20, you can redirect every web request which uses HTTP to the HTTPS secure protocol. To activate this feature on a server, edit (or create) the file “C:Program Files (x86)TSplusClientswebserversettings.bin” and add the following line: disable_http_only=true Save the file and restart Terminal Service Plus web servers (AdminTool […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_joinchat":[],"footnotes":""},"categories":[54],"tags":[392],"class_list":["post-16007","post","type-post","status-publish","format-standard","hentry","category-tsplus-documentation","tag-advanced-documentation"],"acf":[],"mb":[],"mfb_rest_fields":["title","gutenberg_elementor_mode"],"_links":{"self":[{"href":"https:\/\/tsplus.me\/wp-json\/wp\/v2\/posts\/16007","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/tsplus.me\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/tsplus.me\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/tsplus.me\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/tsplus.me\/wp-json\/wp\/v2\/comments?post=16007"}],"version-history":[{"count":0,"href":"https:\/\/tsplus.me\/wp-json\/wp\/v2\/posts\/16007\/revisions"}],"wp:attachment":[{"href":"https:\/\/tsplus.me\/wp-json\/wp\/v2\/media?parent=16007"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/tsplus.me\/wp-json\/wp\/v2\/categories?post=16007"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/tsplus.me\/wp-json\/wp\/v2\/tags?post=16007"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}