Dec 15, 2016 05:42 PM|Taichung|LINK
Hi, The website application are in the same solution but in 2 different project in VS2013. My bad for publishing to our Dev IIS server under Default web site so they're both just published as web applications under the default website.
I now copy over the published just the Web service application files to our Prod IIS 7, I can't publish using Web Deploy because Prod server has dual authentication using DUO and VS2013 Publish option doesn't seem to accommodate this yet.
So, now that the web service is published as a web site but it's just a web service application, do I need a domain name for it? I prefer not. So when I generate the CSR for the web service what should I put for the CN, FQDN? Do I just put in server FQDN/webServiceName
(no asmx extension)? Currently i have it bind to port 80 and I can access it using "FQDN/webServiceName.asmx"
The methods in the web service will validate the userid and password that callers pass in when calling. With SSL installed and credential validated, will this be enough to secure the web service? Oh, I can also configure the Domain and IP range access
limitation on IIS too. Will this be suffice?