I have a couple of SSL questions.
First:
If I would like to protect my entire website by ensuring that all pages are
accessed using SSL (https://)
How would I force that? Would that be an ASP.net config thing, or a
configuration in IIS?

Second:
If I would only like specific pages protected using SSL, but I do _not_ want
to lost my session between
secure and unsecure requests, is there a way to do that? Can it be
accomplished using Server.Transfer or
something?

Oh, and if possible, .Net 1.0 answers would be helpful, but 1.1 is ok too

Any help would be appreciated. THanks

-Clint

Hi,

First off all, you need to setup the SSL option in IIS,
and also create one certificate for this.
Then let the peoples download and install this
Certificate on there server. You can buy one certificate
that is compatible with one of them in IE.
Second:
No you can't get your sessions in the different modes.
What I remember, I'm not sure how the InProc mode work,
Se Session settings in Web.Config,
But you can jump from SSL secure pages to none SSL secure
pages without any problem.

JN