Lab — Enable HTTPS on a Web Server Binding

CompTIA Security+ (SY0-701) hands-on simulation · Data transmission security

3.2.2.3.1 — Transport Layer Security (TLS) 1.4.2.2 — Transport/communication encryption 1.4.11.1 — Certificate authorities

You are the security administrator at Cedar Peak Outfitters, an online gear retailer. The public storefront store.cedarpeakgear.net currently answers only on plain HTTP, so checkout traffic crosses the network in the clear. The CA-issued certificate for the site has already been imported onto the edge web server WEB-DMZ-02. Your job: add a secure binding so the storefront also accepts encrypted connections.

Work entirely inside the simulated management console below. The checklist updates itself as you complete each step.

Internet Information Services (IIS) Manager
WEB-DMZ-02 › Sites › CedarPeak-Storefront

Connections

  • WEB-DMZ-02
    • Sites

Select CedarPeak-Storefront to manage it.

CedarPeak-Storefront Home

Site features. Use the Actions pane to manage bindings.

Actions

  • Edit Site

Task checklist 0 / 4

  • Open the Site Bindings dialog for the storefront.
  • Add a binding with Type = https (port 443 applies automatically).
  • Assign the matching SSL certificate to the new binding.
  • Save it so https appears in the site's binding list.

Knowledge check 0 / 3

1. Which TCP port does HTTPS listen on by default?
2. TLS was developed as the successor to which older protocol?
3. Binding a valid certificate to the site lets the browser do what during the handshake?

Submit your lab 0 / 7