Hi Natarajan! Using HTTPS is quite similar to asking IIS to bind to several IP-addresses or ports for HTTP. Your application will be called from the IIS and must explicitly look at the request to notice that is over a secure channel. Main impact is that you CPU are going to spend more time on encryption/decryption of traffic if you do not have hardware acceleration for SSL. This can give you performance problems if you have a lot of traffic. You will also get the problem to handle certificates and update them regularly. Self signed certificates will always give warnings in modern web browsers and is only a solution for intranet solutions where you can install the certificate for each user. Regards, Fredrik Haglund INEXOR AB - http://blog.fredrikhaglund.se