UserLock Frequently Asked Questions
Enabling HTTPS on the UserLock Web Console
Today, there is no such thing as non-sensitive web traffic. HTTPS can provide a fast, secure connection that offers the level of privacy and reliability that users should expect from a web application.
When properly configured, an HTTPS connection guarantees three things:
- Confidentiality. The visitor’s connection is encrypted, obscuring URLs, cookies, and other sensitive metadata.
- Authenticity. The visitor is talking to the “real” website, and not to an impersonator or through a “man-in-the-middle”.
- Integrity. The data sent between the visitor and the website has not been tampered with or modified.
A plain HTTP connection can be easily monitored, modified, and impersonated.
Even though an internal website is not as risky as a public website, we strongly recommend that you set up HTTPS on the UserLock web console. This is a standard procedure for a web application. Please follow instructions here.