Hyland Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

IIS 7.5 Reverse Proxy - SSL [Tutorial]

102020
Champ on-the-rise
Champ on-the-rise

‎07-17-2014 10:49 AM

Follow these steps to setup an IIS 7.5 Reverse Proxy. Allot of people are using Apache Reverse Proxy, but since we are running in a Windows environment, it logically made more sense to run this method.

Setup reverse proxy to wrap the connection with SSL. On your Alfresco machine, install IIS with default options.
Once installed download and install the following files:
URL Rewrite: http://www.iis.net/expand/URLRewrite
Application Request Routing: http://www.iis.net/expand/ApplicationRequestRouting

Open up IIS Manager, click on your server name, and on the main panel, open Application Request Routing. On the right hand column, click Server Proxy Settings…
Simply click Enable proxy, and then apply on the right.
Return to the same screen as before, and open Server Certificates, import your SSL cert (.pfx file is the easiest way to do that)
Now expand Sites, and select Default Web Site, and open URL Rewrite. On the right column, select Add Rule(s)…
You will get a popup, select Reverse Proxy from the list. Enter your non-ssl alfresco url, such as: hostname.fqdn.com:8080
Hi ok, now on the right column again, select Bindings, add your https binding and the certificate you want to tie to it. I would remove the http binding if you are not using it.
Save, and we are almost done!

Copy ALL of the content from C:\Alfresco-4.2.f\tomcat\webapps\share\WEB-INF\classes\alfresco\share-security-config.xml
*Note: You may want to open it using 'DAMN NFO Viewer', as the formatting is screwed up in this file if you open in notepad.

We need to edit share-config-custom.xml, located: C:\alfresco\tomcat\shared\classes\alfresco\web-extension

Paste the content you copied to the bottom of the share-config-custom.xml file

***You want to change the following 2 values they are in brackets:

<referer></referer>
<origin></origin>


they should look something like the below once you input your info:

<referer>https://hostname.fqdn.com/.*</referer>
<origin>https://hostname.fqdn.com</origin>


Make sure on the referer line you have the /.* at the end. That all for now, save and close.



Now let's go try it out after starting up your Alfresco instance. simply goto https://hostname.fqdn.com/share
and you should be all wrapped up in SSL!
Labels:
3 REPLIES 3

s4vva
Champ in-the-making
Champ in-the-making

‎09-26-2014 11:58 AM

Thank you for a great guide, however I am having difficulty following the guide past the iis settings.

I am able to view the login screen via the reverse proxy in iis which works fine however i receive an error message once I enter my login credentials and attempt to login.

Could someone please offer some guidance on what edits I need to make to config file in order to get this working?
0 Kudos

102020
Champ on-the-rise
Champ on-the-rise
In response to s4vva

‎10-08-2014 09:45 AM

please see my original post, I have updated it, seems the forum stripped out allot of the originally posted code.
0 Kudos

badok
Champ in-the-making
Champ in-the-making
In response to s4vva

‎05-10-2019 10:57 AM

Hi

I know that this is an old post but I have exactly the same problem and I didn't find anything in the original post which could fix it. I can't log on in https. Once I did it with the original port (8443), I can navigate with https without any error. Morevoer, in https, I can't log off as it's not possible to log on.

Does anyone face with that and solved it ?

Thanks a lot

0 Kudos
Getting started

Tags

Find what you came for

We want to make your experience in Hyland Connect as valuable as possible, so we put together some helpful links.

Copyright © 2025 Khoros, LLC