HTTPS

On-premises only

Introduced in 2024

All Alloy web applications (Web App, Self Service Portal, and API module) require HTTPS to ensure secure communication between clients and servers. HTTPS encrypts data, protecting it from interception and unauthorized access.

The Alloy Installer will check for HTTPS during installation or upgrade and will not proceed if it's not enabled.

To configure HTTPS for Alloy Navigator Express:

Install an SSL/TLS Certificate

Obtain a valid certificate from a trusted Certificate Authority (CA).

NOTE: Self-signed certificates can be used for testing and evaluation purposes only.
Configure IIS for HTTPS

Bind the certificate to the Alloy web applications (Web App, Self Service Portal, and API module) in IIS.
Enable HTTP-to-HTTPS Redirection (if HTTP is still enabled)

Redirect HTTP traffic to HTTPS to ensure secure connections. For instructions, see Microsoft: Redirect HTTP traffic to HTTPS in IIS.

INFO: For detailed guidance on configuring HTTPS, see Microsoft: Enabling SSL in IIS.

HTTPS

Install an SSL/TLS Certificate

Configure IIS for HTTPS

Enable HTTP-to-HTTPS Redirection (if HTTP is still enabled)

Products

Resources

Company