Secure Sockets Layer (SSL) Options

Last reviewed: November 13, 1997
Article ID: Q172023

The information in this article applies to:

  • Microsoft Internet Information Server version 3.0

SUMMARY

Secure Sockets layer (SSL) provides a security "handshake" that is used to initiate the TCP/IP connection. This handshake results in the client and server agreeing on the level of security they will use and fulfills any authentication requirements for the connection.

SSL is also used to encrypt all the information in both the HTTP request and HTTP response, including the URL the client is requesting, any submitted form contents (such as credit card numbers), any HTTP access authorization information (user names and passwords), and all the data returned from the server to the client.

IMPORTANT: Before you can use your Web server's SSL features, you must install a server certificate, which is a digital identification used to identify your Web server. For information on installing a server certificate, please see the IIS Online Product Documentation, Chapter 5, "Securing Your Site Against Intruders."

MORE INFORMATION

Require Secure SSL Channel

Select this check box to require an encrypted communication link for a Web browser to connect with this Web site, directory, or file.

Enable SSL Client Authentication

(This feature is only available for Windows NT Server installations.) When this check box is selected, users with a Secure Sockets Layer (SSL) client certificate can establish a connection with restricted Web server content, requiring SSL authentication.

Require Client Certificates ---------------------------

When this check box is selected, the service requires users to have an SSL client certificate to establish a connection with the requested resource. A client certificate is a digital identification issued by a trusted, third-party organization, called a certificate authority. The certificate authority verifies the user's identity before issuing the user a client certificate.


Additional query words: ssl security
Keywords : iissecurity kbother
Version : WinNT:3.0
Platform : winnt
Hardware : ALPHA x86
Issue type : kbinfo


THE INFORMATION PROVIDED IN THE MICROSOFT KNOWLEDGE BASE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY.

Last reviewed: November 13, 1997
© 1998 Microsoft Corporation. All rights reserved. Terms of Use.