Since the response to my previous Q. re. web apps security was "it's not in the code" (thank you again, StrongM!), here's the next Q., but I need to explain something 1st:
We use internal I-net (VPN, no outside access), and the exchange goes through port 80.
Our Cyber-security Dept. tells us this port is not secure, and demands us to switch to the secure one (apparently - port 443).
We tried to find it in IIS settings - couldn't.
And (finally!) the question is: where/how we can switch our website from using port 80 to using port 443?
(If it sounds like child's blabbering - that's due to my ignorance in these things: I have never been a Sys Admin, only an application programmer/developer...)