Enforce HTTPS protocol

Standard Case

Starting from Terminal Service Plus version 9.20, you can redirect every web request which uses HTTP to the HTTPS secure protocol.

To activate this feature on a server, edit (or create) the file "C:\Program Files (x86)\TSplus\Clients\webserver\settings.bin" and add the following line:

disable_http_only=true

Save the file and restart Terminal Service Plus web servers (AdminTool > Web > Restart Web Servers or reread configuration by accessing http://127.0.0.1/w0j3?settings.bin).

Once this feature is enabled, you can try to browse to the insecure web page at:

http://your-server

and it will automatically redirect your request to the secure Web Portal page at:

https://your-server

Special case: Custom Web Ports

If you are using a specific port to serve HTTPS, then edit the file "C:\Program Files (x86)\TSplus\Clients\webserver\settings.bin" and use the following line instead of the line described above:

disable_http_only="domain.com:4431"

where domain.com is your own server host name and 4431 is your HTTPS custom port.

Save the file and restart Terminal Service Plus web servers (AdminTool > Web > Restart Web Servers).

Once this feature is enabled, you can try to browse to the insecure web page at:

http://domain.com

and it will automatically redirect your request to the secure Web Portal page at:

https://domain.com:4431


Comment: Even if this is not secure but you wish to disable ssl/https on http port then edit the settings.bin file and add: disable_ssl_on_http=true, save and restart the servers.

Disable http on https

By default it is allowed to access https://my-domain.com, https://my-domain.com:80, http://my-domain.com:443 So it allows http on port 443 or allow https on port 80, it does not have impact on security and makes it easy to fallback to degraded xhr-connection when no websockets support is possible But if wished to disable it, edit the settings.bin file and add the following line:

disable_http_on_https=true

Then restart Terminal Service Plus web servers (AdminTool > Web > Restart Web Servers or reread configuration http://127.0.0.1/w0j3?settings.bin)

HTTPS Enforcement and Free SSL Certificate Validation

Please note that this HTTPS Enforcement feature is fully compatible with our Free SSL Certificate feature.