Disable Unencrypted HTTP Access

Even if an SSL connection is fully configured, users can access the web server using the URL for the unencrypted HTTP connection. Disable that access as follows to ensure users only use SSL (HTTPS).

1. In IIS, select the OneStream Web Server Site and then double-click the SSL Settings.

2. Select Require SSL and click OK.

3. Restart IIS.

4. Test both URLs in a browser to confirm that:

   • The HTTPS URL works.

   • The HTTP URL displays an error.