We are using HTTPS for our entire portal implementation. When we access our portal, however, we get a pop up warning to select whether or not we want to display non-secure content. I ran HTTPWATCH and found that this occurs when, for some reason after logging into my session with HTTPS, the portal switches over to HTTP for the theme only. When I click yes, the portal loads the theme (http) and then switches back to HTTPS for everything else.
Ideally, every single call in the portal needs to be HTTPS. I don't want to require users enable IE to allow mixed modes to avoid the pop up.
Any other ideas how this can be done? Is there a setting somewhere that tells the portal to load the theme with HTTP instead of HTTPS?