Sana Commerce 8.1
Your provider


It is recommended to secure the data exchanged between the web server and the webshop visitor's browser. This can be done partially (e.g. Checkout, Log in, Wish list) or for the entire webshop.

Partial HTTPS is used to secure only the pages which send sensitive data over the Internet:

  • All checkout pages;
  • Login page;
  • Change password page;
  • Registration page.

Compared to full HTTPS the use of partial HTTPS saves CPU and bandwidth usage.

Before configuring full or partial HTTPS you should request the SSL certificate for the domain of the Sana Commerce frontend at a certificate authority. In case of a multi-shop solution and depending on your setup, you might need an additional certificate for each webshop domain.

The information in this chapter covers the following areas:

  • How to create SSL certificate.
  • Configure server with the Sana Commerce website.
  • Configure IIS to listen to HTTPS.
  • How to configure full HTTPS.
  • How to configure partial HTTPS.