Forum Discussion
How to prevent Malicious HTTP Redirections on an Exchange server
Hello All! I am attempting to assist a customer who is trying to pass PCI scans. By default, their IP addresses redirects any HTTPS (443) requests to the Exchange server's OWA. This is fine, excep...
jcount437 For anyone looking for an answer, here it is. I went to "Bindings" on the Default Web Site, selected my HTTPS (443) binding, and set the hostname to "https://mail.domain.com/" and enabled "Require Server Name Indication". Now when I try to use "https://vpn.domain.com/" on port 443, I get a 404 error, which is exactly what I need to pass the scan. Problem solved, no need to mess with URL Rewrite.