Preconditions
Company / developer has ordered and issued a Production VOCES certificate.
If PID/CPR service is needed: PID/CPR access granted and SPID obtained.
Same preconditions as the previous step (Get the .NET TU-Example to run on a test setup on a test server) still applies.
Walkthrough
1. Verify the certificate chain is installed
From the Run menu in Windows Server, type in: MMC.
Add snap-in and choose Certificates for Computer account.
/PublishingImages/Pages/Get-the-.NET-TU-example-to-run-on-a-test-server-with-a-production-certificate/1.jpg)
Verify the highlighted certificates are installed.
If not, install them from this path: Certificate chain
See earlier step (GET THE .NET TU-EXAMPLE TO RUN ON A TEST SETUP ON A TEST SERVER) for help on how to do this.
2. Start the IIS Manager
/PublishingImages/Pages/Get-the-.NET-TU-example-to-run-on-a-test-server-with-a-production-certificate/2.jpg)
3. Change certificate path in app.config & web.config
Change the certificate path in web.config and app.config to the location where the test certificates will be located on the test server.
For example C:\inetpub\certs\DanIDTestTU.pfx.
Note that this certificate file should be in the .pfx file extension.
4. Verify publish settings
Verify that the publish settings are as follows Project –> Package/publish settings.
/PublishingImages/Pages/Get-the-.NET-TU-example-to-run-on-a-test-server-with-a-production-certificate/3.jpg)
5. Publish project
Publish the TU-example project (on the local development client).
Right click on TU example project and choose Publish.
/PublishingImages/Pages/Get-the-.NET-TU-example-to-run-on-a-test-server-with-a-production-certificate/4.jpg)
Copy content from the Publish folder to the test server, and keep it for the next step.
6. Go to test server
Remove the default website from IIS Manager.
Copy the published project to the folder : C:\inetpub\wwwroot.
Add new website.
/PublishingImages/Pages/Get-the-.NET-TU-example-to-run-on-a-test-server-with-a-production-certificate/5.jpg)
Stop the IIS Server.
7. Configure application pool on IIS server
Select application pool for tuexample in the IIS Manager.
/PublishingImages/Pages/Get-the-.NET-TU-example-to-run-on-a-test-server-with-a-production-certificate/6.jpg)
Right click and choose Advanced Settings.
Set the Load User Profile to True.
/PublishingImages/Pages/Get-the-.NET-TU-example-to-run-on-a-test-server-with-a-production-certificate/7.jpg)
8. Startup application
Startup application by typing http://localhost/ in Internet Explorer and choose Variant 1 (Login med en-gangsnøgle).
This will fail as the App pool user has no priviliges to access the websites database file.
This failed request will however create the App pool user and allow us to grant access rights for the newly created user.
9. Grant access to App data files
Grant full access to app data files (database file log file) for App Pool user.
This can be done by doing the icacls command from a DOS prompt.
/PublishingImages/Pages/Get-the-.NET-TU-example-to-run-on-a-test-server-with-a-production-certificate/8.jpg)
Paste it from here:
icals App_Data\ASPNETDB.MDF /grant tuexample:(F)
icals App_Data\aspnetdb_log.LDF /grant tuexample:(F)
Grant full access to certificate file for App Pool user.
/PublishingImages/Pages/Get-the-.NET-TU-example-to-run-on-a-test-server-with-a-production-certificate/9.jpg)
icals certs\DanIDTestTU.pfx /grant tuexample:(F)
10. Start the IIS server again 11. Test the TU-exampleTest the TU example again to verify that it works by inserting the URL:
http://localhost/ into a browser.
If you have specified a default html file in your project, this must be added as well:
http://localhost/Default.aspx 12. Running the TU example with your own production certificateNow you are done with the test part of the release, and are ready to deploy a version with your production certificate.
Follow a walkthough here (danish version)
