Hi, Our approach is to configure both Apache and OTRS to use https: In OTRS, Sysadmin -> Framework -> Core -> HttpType = https In Apache, RedirectPermanent / https://otrs.server/ </VirtualHost> and then configure as needed Hope this helps, Juan Clavero Almirón -----Mensaje original----- De: "LQ Marshall" [mailto:qmarshall@inetspace.net] Enviado el: martes, 06 de marzo de 2012 7:33 Para: User questions and discussions about OTRS. Asunto: Re: [otrs] Redirect http to https There is a HTTPS directive within the OTRS SysConfig. Sorry I don't recall it's exact location. ----- Original Message ----- From: Ugo Bellavance To: otrs@otrs.org Sent: 3/5/2012 22:15 Subject: Re: [otrs] Redirect http to https On 2012-03-05 22:10, michaelt@firstus.org wrote:

Version OTRS 3.0.8 (Windows Installer)

I would like to know how to force OTRS to use HTTPS? I have HTTPS configured and working. I just want to force everyone to use HTTPS as we are authenticating against Active Directory, so I just don’t want to expose our network credentials over HTTP.

I realize that this is very likely an Apache config, but I am not an Apache guru, so I just need a reference article of sorts.

Any help would be appreciated.

You can use the ForceSSL directive of apache, but it will just deny http traffic with a permission denied error. Simple, but... simple ;) A little more complex and complete would be to use rewrite rules. If you only want to redirect the home pages, you can use a simple html redirect and disable the otrs config in regular http. What OS are you running on? Ugo --------------------------------------------------------------------- OTRS mailing list: otrs - Webpage: http://otrs.org/ Archive: http://lists.otrs.org/pipermail/otrs To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs