Microsoft KB Archive/825493

= How to use SSL to encrypt a Web in Expression Web, in SharePoint Designer 2007, and in FrontPage 2003 =

Article ID: 825493

Article Last Modified on 6/21/2007

-

APPLIES TO


 * Microsoft Office FrontPage 2003

-





SUMMARY
You use Microsoft Expression Web, Microsoft Office SharePoint Designer 2007, or Microsoft Office FrontPage 2003 to create a new Web. If you use the Encrypted connection required (SSL) option, all your Web uses the Secure Sockets Layer (SSL) port to encrypt all the data sent to or from these programs. With this option, you can also specify whether you want to use the SSL port for links to specific pages in a nonsecured Web. This article describes how to complete both encrypted authoring and encrypted browsing.

Use SSL for encrypted authoring
To use SSL for encrypted authoring, follow these steps:

Expression Web and SharePoint Designer 2007

 * 1) On the File menu, point to New, and then click New Web Site.
 * 2) On the Web Site tab, click the template that you want to use.
 * 3) In the Web Site dialog box, type the HTTP location of the new site in the Specify the location of the new Web site box. Alternatively, you can select this location from the list, or click Browse to search for the location.
 * 4) Click to select the Encrypted connection required (SSL) check box, and then click OK.

Note If you are creating a disk-based Web, the Encrypted connection required (SSL) check box is not available.

FrontPage 2003

 * 1) On the File menu, click New.
 * 2) Under New Web Site, click the template that you want to use.
 * 3) In the Web Site Templates dialog box, on the General tab, in the Specify the location of the new Web site box, type the HTTP location of the new site. Alternatively, you can select this location from the list, or click Browse to search for the location.
 * 4) Click to select the Encrypted connection required (SSL) check box, and then click OK.

Note If you are creating a disk-based Web, the Encrypted connection required (SSL) check box is not available.

For more information about creating a new Web, click the following article number to view the article in the Microsoft Knowledge Base:

198092 How to create a new Web in Microsoft FrontPage 2000

SSL helps improve encrypted and authenticated communication between the client and the server based on public-key cryptography. To send an encrypted message, the sender encrypts the message with the recipient's public key, and the recipient decrypts the message with the recipient's private key. Because only the recipient has the private key that can decrypt the message, it is difficult for someone other than the recipient to decrypt the message.

To guarantee authenticity, a certificate accompanies the public key. A certificate is a digital signature on a digest of the friendly (human readable) name of the participant, together with the participant's public key. The certificate is encrypted with the private key of the certification authority. To verify the authenticity of the public key of the participant, anyone can compute the digest of the friendly name and the public key for that participant. They can use the certification authority's public key to decrypt the certificate and verify that the same digest results.

Note Expression Web, SharePoint Designer 2007, and FrontPage 2003 can use Wininet.dll program interface if Internet Explorer 5 or later is installed and can use 128-bit encryption. If Internet Explorer 5 is installed with 40-bit encryption, FrontPage 2002 only uses 40-bit encryption. If Internet Explorer 5 or later is installed with 128-bit encryption, Expression Web, SharePoint Designer 2007, and FrontPage 2003 can use 128-bit encryption.

Use SSL for encrypted browsing
If you do not want to encrypt your whole Web site with SSL, but you must have SSL encryption to search some of your pages, you can use a fully qualified URL to mix ports on a single Web. Web servers use a separate port for SSL connections. This port is identified by the protocol that the URL uses:
 * http:// for an unencrypted Web site.

-or-
 * https:// for an encrypted Web site.

To create an SSL link for a page, use a fully-qualified URL. Do not use a relative URL to a specific file. For example, do not use the relative URL:

default.htm

Use the fully qualified URL:

https://example.microsoft.com/default.htm

The fully qualified URL forces the browser to use the SSL port (typically port 443) instead of the default port (typically port 80). To link from the SSL port to the default port, use a fully qualified URL with the unencrypted protocol. For example:

http://example.microsoft.com/default.htm

To create an SSL link for encrypted browsing from a page in your Web to another page, follow these steps:  Open your Web in FrontPage, and then select the text that you want to use for your hyperlink. Click Insert, and then click Hyperlink. In the Address box, type:

https://

For example, type:

https://example.microsoft.com/default.htm

 Click OK.

Remote Web site settings
To use SSL connections on your Web server, you must configure the server with a certificate from a recognized certification authority. If the server does not support SSL, click to clear the Encrypted connection required (SSL) check box when you set the remote Web site properties. If you do not do this, you cannot publish folders and files to the remote Web site. If you do not know whether your Web site supports SSL, contact your Web server administrator or Internet service provider.

