Configure Enhanced HTTP
Enhanced HTTP (eHTTP) is a simplified method of secure communication without the overhead of a standard PKI deployment. In an eHTTP setup, the site issues self-signed certificates to the various site servers, such as management points and distribution points. Then, these site systems issue unique site tokens to clients. The client then uses the site token for communication with site servers. Microsoft provides a diagram of this process (Figure 1).
Figure 1 - Enhanced HTTP Diagram
NOTE: The preferred/recommended method for secure communication is the use of PKI certificates (PREVENT-8). eHTTP is a compromise between PKI and standard HTTP use and is a more secure option than the latter.
- Microsoft, Enhanced HTTP, https://learn.microsoft.com/en-us/mem/configmgr/core/plan-design/hierarchy/enhanced-http