If you do a default installation of ConfigMgr 2012 the clients will communicate over HTTP with the Management Point. Also all traffic from the Distribution Point will be over HTTP. And if you use the Application Catalog, well that’s HTTP also.
In this 3 post series I will explain the steps to go from HTTP to HTTPS communication.
The first post (HERE) I explained the Certificates needed, the second (HERE) and third one (this one) will do the actual work of transforming ConfigMgr from HTTP to HTTPS.
What is going to happen:
- Have HTTPS traffic from and to the Distribution Point
So I have got my clients communicating over HTTPS, with my PKI Infrastructure, to the Management Point. Nice!
But now I want the traffic from and to the Distribution Point also over HTTPS.
ConfigMgr Configuration
Under Administration – Overview – Site Configuration – Servers and Site System Roles select the server with the Distribution Point Role. Select Properties.
Import Certificate.
You need the ConfigMgr Client Distribution Point certificate (the .PFX), supply the password and OK.
And now the data is flowing secure from and to your DP.
Part 1 Here.
Part 2 Here.
Pingback: HTTPS Communication SCCM 2012 SP1 « MS Tech BLOG
Hello Stephan,
Great blog and its good to see some clarity regarding ConfigMgr and SSL.
One note however; I see the site properties and DP property changes required for SSL client communication but no mention of the MP role property changes required for SSL. Maybe I missed something?
Thanks, Jeff
Ha Jeff,
this is discussed in Part 2
found here: https://wibier.me/https-communication-sccm-2012-sp1-part-2/