Securing Your System

There are several steps you can take to add additional security to your system. Check with your network administrator and your company security policies to find out what you should implement.

Microsoft's IIS.NET forum provides information on suppressing IIS information. If you need additional help, contact Microsoft Support.

Follow the TLS/SSL Setup instructions in this Help.

You need to redirect the Revolution web interface to HTTPS port 443.

Note: Steps may be slight different depending on your Windows server version.

  1. Open IIS Manager on your Revolution server.
  2. In Connections, expand to <name>/Sites and select UnifiedGui.
  3. In UnifiedGui Home, under IIS, double-click URL Rewrite.

    4. Note: If you don't see URL Rewrite, download and install the extension from Microsoft's IIS Downloads.

  4. In Actions, Select Add Rule(s).
  5. Under Inbound rules, double-click Blank Rule.
  6. In Edit Inbound Rule:
    1. For Name, enter a descriptive name
    2. For Requested URL, leave it set to Matches the Pattern
    3. For Using, leave it at Regular Expressions
    4. For Pattern, enter (.*)
    5. For Ignore case, leave it selected
    6. Expand Conditions
      1. For Logical grouping, select Match All
      2. Select Add, to open the Add Condition dialog box
        1. For Condition input, enter {HTTPS}
        2. For Check if input string, leave it set to Matches the Pattern.
        3. For Pattern, enter ^OFF$
        4. Click OK.
    7. Expand Action
      1. For Action Type, select Redirect
      2. For Redirect URL, enter https://{HTTP_HOST}/{R:1}
      3. Clear Append query string
      4. (Optional) For Redirect type, change the value from Permanent (301), if desired. However, the other redirect types are typically not recommended for HTTP/HTTPS redirect.
    8. Under Actions, select Apply
  7. In Connections, select UnifiedGui again
  8. In Actions, under Manage Website, select Restart

Summary of Inbound Rules page

Review the Firewall/Port Usage Requirements topic in this Help.

Some company security policies require the ability to display a custom message to end users on the login screen (for example, a legal warning). Custom login messages are configured in Global Settings > Company or Organization Information.

Follow the SSL for Cisco instruction in this Help.