Secure Sockets Layer (SSL) Options

The information in this article applies to:

• Microsoft Internet Information Server version 3.0

SUMMARY

Secure Sockets layer (SSL) provides a security "handshake" that is used to initiate the TCP/IP connection. This handshake results in the client and server agreeing on the level of security they will use and fulfills any authentication requirements for the connection.

SSL is also used to encrypt all the information in both the HTTP request and HTTP response, including the URL the client is requesting, any submitted form contents (such as credit card numbers), any HTTP access authorization information (user names and passwords), and all the data returned from the server to the client.

IMPORTANT: Before you can use your Web server's SSL features, you must install a server certificate, which is a digital identification used to identify your Web server. For information on installing a server certificate, please see the IIS Online Product Documentation, Chapter 5, "Securing Your Site Against Intruders."

MORE INFORMATION

Require Secure SSL Channel

Select this check box to require an encrypted communication link for a Web browser to connect with this Web site, directory, or file.

Enable SSL Client Authentication

(This feature is only available for Windows NT Server installations.) When this check box is selected, users with a Secure Sockets Layer (SSL) client certificate can establish a connection with restricted Web server content, requiring SSL authentication.

Require Client Certificates ---------------------------

When this check box is selected, the service requires users to have an SSL client certificate to establish a connection with the requested resource. A client certificate is a digital identification issued by a trusted, third-party organization, called a certificate authority. The certificate authority verifies the user's identity before issuing the user a client certificate.