Redirect HTTP to HTTPS in Exchange 2013You have an EXCHANGE 2013 server.
This web site works: https://mail.domain.tld
This web site does not work: http://mail.domain.tld
You get an error message:
"HTTP ERROR 403.3 - Forbidden. The page you are tryig to acces is a secured with Secure Sockets Layer (SSL)."
or
"Server Error: 403 - Forbidden: Access is denied."
Here's how to fix:
- -open SERVER-MANAGER
- -click TOOLS > INTERNET INFORMATION SERVICES MANAGER (IIS)
- -expand SERVER > SITES > DEFAULT-WEB-SITE
- -click ERROR PAGES (in the middle).
- -click ADD (on the right).
- -type: 403.4 (in STATUS CODE).
- -bullet RESPOND WITH A 302 REDIRECT
- -type: https://mail.domain.tld
- -click OK.
First of all, this can happen for many reasons. However, in my experience, this happens because the web site is required to have HTTPS and not HTTP. What is amazing here is a perfect scenario of different people groups think differently. Accordingly, the amount of mis-information on this is mind-boggling and complex.
For example, one MS article recommends to turn off SSL:
https://support.microsoft.com/en-us/kb/2839692
Ummm, that's a big NO. Recommending to do so is simply irresponsible.
Others recommend a complex setup for a URL-REWRITE, like this
https://www.youtube.com/watch?v=U7USHit5mhY
Ummm, that's also a big NO.
Others recommend to do a HTTP REDIRECT on the OWA section of the web site:
https://www.itsupportguides.com/exchange-2010/exchange-2010-outlook-web-access-error-403-access-is-denied/
Ummm, that's also a big NO. In fact, doing so will kill access to EXCHANGE altogether.
Like usual, the only way I found to handle this was through a comment on a random blog article here:
https://www.sslshopper.com/iis7-redirect-http-to-https.html