Hi,
I would like to use the Portal for both a website (the Home Tab plus two more tabs) and an Extranet/Intranet (the rest of the tabs). The security roles are not good enough for my purpose because although I can control which users can view which tabs, the data of the restricted tabs is still not encripted and could be intercepted if the user of the Extranet part of the website is requesting confidential meterial. The obvious solution would be SSL (HTTPS).
Usually in IIS you can assign SSL based on a site, a virtual directory, or even a file.
However:
the design of the Portal is such that the same file (DesktopDefault.aspx) is being used to display all the tabs, and the only difference is the data that is coming from the Database. I therefore cannot assign SSL to this page because it will force SSL also on the Home tab.
How can I integrate SSL into only some of the Tabs? Is there another solution?
Also, what about the issue of password and username of users of the Extranet going in plain text and therefore not secure. Is there a way around that (I could probably turn the whole site into SSL but then the site would not be as easily available to the general public because the url will have to start with https://mySiteName)
Any ideas on this issue?
Thanks a lot
Lilon