cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

How to block the HTTP access to the portal and force HTTPS?

Former Member

on ‎05-08-2007 2:02 PM

0 Kudos

Hello,

I have configured SSL for the server so now the portal is accessible on both http 50000 and https 50001.

I would like to completley block the http access to the portal so users will be forced to use HTTPS.

For that, I have changed the HTTP Service of the dispatcher from this:

(Port:50000,Type:http)(Port:50001, Type:ssl)

To this:

(Port:50001, Type:ssl)

The problem is that when I do that other services are not working such as the SLD.

How can I block the HTTP access to the portal then without affecting the other services?

Show replies
Show replies
Answer

Accepted Solutions (0)

Answers (1)

Answers (1)

Former Member
‎05-08-2007 2:36 PM
0 Kudos

Put in a reverse proxy that does the forcing for you for users. This way when someone browses to www.yourcompany.com on port 80 the reverse proxy will redirect them to the proper port (50001).

Show replies
Show replies
eddy_declercq
Active Contributor
‎05-08-2007 3:00 PM
0 Kudos

Hi,

Pls check things like

http://help.sap.com/saphelp_nw2004s/helpdata/en/42/d5491930b6473ce10000000a114e5d/frameset.htm

http://help.sap.com/saphelp_nw2004s/helpdata/en/b7/27b63d8d5d450aad75da5429eec5e6/frameset.htm

http://help.sap.com/saphelp_nw2004s/helpdata/en/d8/00413549394a85b28bae68b715e6cb/frameset.htm

Eddy

-

PS. Reward the useful answers and you will get <a href="/people/baris.buyuktanir2/blog/2007/04/04/point-for-points-reward-yourself">one point</a> yourself!

Former Member
‎05-08-2007 3:11 PM
0 Kudos

Guys,

The users are currently browsing to the portal through port 5000.

Isn't there a simpler solution to block this port on the Visual Admin rather than building a reverse proxy?

Roy

Former Member
‎05-08-2007 3:14 PM
0 Kudos

Eddy, correct me if I am wrong but I think the SLD needs to run on the HTTP port.

Former Member
‎05-08-2007 3:27 PM
0 Kudos

David,

It does, this is why I am looking to block only portal access for the users.

a request to /sld on http will stay open.

Roy

former_member309961
Explorer
‎06-18-2012 3:39 AM
0 Kudos

Hi Roy,

Can you share your solution? I need to block HTTP access.

I have done ProxyMappings but it can't work.

proxymappings:  50000=(Host:hostname,Port:50001,Scheme:https,Override:true)

Is there any prerequisites or  any configuration i miss out? Thanks

Regards.

Former Member
‎06-18-2012 7:44 AM
0 Kudos

This has to be done on a Network level and not portal level.

Please speak to your network administrator.

former_member309961
Explorer
‎06-18-2012 8:54 AM
0 Kudos

Thanks for the reply.

I understand that this can be done at the network level.

However i wish to control this http access from the portal because we are doing some testing.

May have to block and unblock as per user request. It will be easy if there is no involvement with our network team.

I have followed the instruction given in:

http://wiki.sdn.sap.com/wiki/display/EP/Converting+http+to+https

I wish to map http to https.

50000=(Host:www.sap.com,Port:50001,Scheme:https,Override:true)

But it can't work. Have you try it? Is it working for you?

Please advise, thanks

Regards.

Former Member
‎06-18-2012 8:58 AM
0 Kudos

I have not tried this particular guide as we ended up doing this on the network level and therefore did not pursue other alternatives. You are welcome to try and report

Ask a Question