What steps to implement SSL / TSL in an ASP.NET MVC application

0

I'm developing an ASP.NET MVC project and would like to know what processes are required to implement TSL / SSL.

I'm really not sure if this is the best place to ask this, but I suppose you might have done this before.

Do I need to implement something in the software layer or is it just about infra? I have an Amazon EC2 server with an Elastic IP.

    
asked by anonymous 01.07.2016 / 03:08

1 answer

1
  

Do I need to implement something in the software layer or is it just about infra?

In fact everything is ready. You just need to enable your application. Click the project file of your ASP.NET MVC application and press F4 . You should see a screen like this:

ChangetheSSLEnabledfieldtoTrue.YourapplicationwillhavetwoURL's,oneforHTTPSandoneforHTTP.

IISExpressinstallsadigitalcertificateforyou.Sinceitisself-signed,itworksfinewhileyouaredeveloping,butanyexternalaccesswillgivevalidationproblem.

SSL configuration in IIS is here .

If purchasing a certificate is not an option, you can use the Cloudflare, which is free . Just transfer control of your DNS to it and configure SSL in the Cloudflare dashboard. In addition to SSL, Cloudflare also functions as a sort of cache layered with security layer.

    
01.07.2016 / 07:07