We take a multi-prong method on this one.
1a. Create a basic HTML redirect.
I won't paste all the code in here. But basically it's a one-liner HTML file. it includes the meta http-equiv "refresh" command, with the content value set to say 5 seconds, along with the HTTPS (secure) url of your Kerio box.
We also add a body text to this page, saying 'You are being diverted to Secure mail interface...".
1b. Setup the web-serving on the box, to server out that particular page.
2. Turn off HTTP in your KMS Admin app.
3. Change your HTTP in your KMS Admin app, to a different port. e.g. 81, 8080, 9090, whatever. Can cause problems with sharing subscribing though, so, items 4+5 might be useful too...
4. Restrict HTTP access, via KMS (if you're leaving it on), to only specific IP's (e.g. a particular admin user, or trusted LAN users etc.).
5. If you need to do further directs for external visitors, redirect (NAT) any external firewall traffic that attempts to go to port 80 on your KMS box, redirect to 443 HTTPS.
Hope that helps,
Thanks for your response Derek, howeve I found another way doing this. In KMS under advanced options > Security Police. I check Require Secure authentication. I allowed insecure for my local clients. and enable the Account lockout incase
Kerio discussion forums are intended for open communication between forum
members and may contain information and material posted by members which may
be useful in learning about Kerio products. The discussion forums are not
intended to provide technical support for any specific product. Any
information implied or expressed in the discussion forums is that of the
posting member. Kerio is in no way responsible for the information posted in
the forums, or its accuracy. Kerio employees may participate in the
discussions, but their postings do not represent an offical position of the
company on any issues raised or discussed. Kerio reserves the right to
monitor and maintain the forums to promote free and accurate exchange of