Preconditions
- Company / developer have a Test VOCES certificate.
- If PID/CPR is needed: PID/CPR access granted and SPID obtained
- Microsoft .NET 4.0 Framework installed on test server
- Microsoft Sql Server 2012 Express installed on test server
- Microsoft Internet Information Server 7 installed on test server
- Windows server 2008 R2 installed on test server
-
Certificate chain installed on server for trusted certificates
Walkthrough
1. Verify the certificate chain is installed
From the
Run menu in Windows Server, type in:
MMC.
Add snap-in and choose
Certificates for
Computer account and then
Local computer.
Verify the highlighted certificates are installed.
If not, download a .p7b file containing all of them.
To install the certificate chain:
Right click on the file and choose
Install Certificate.
Click
Place all certificates in the following store.
Click
Show physical stores and browse to
Trusted Root Certification Authorities -> Local Computer. Click OK.
Click
Next.
Click
Finish.
Verify the highlighted certificates are installed, as described above.
2. Start the IIS Manager
3. Change certificate path in
app.config &
web.config
Change the certificate path in
web.config and
app.config to the location where the test certificates will be located on the test server.
For example
C:\inetpub\certs\DanIDTestTU.pfx.
Note that this certificate file should be in the .pfx file extension.
4. Verify publish settings
Verify that the publish settings are as follows
Project –> Package/publish settings.
5. Publish project
Publish the TU-example project (on the local development client).
Right click on
TU example project and choose
Publish.
Copy content from the Publish folder to the test server, and keep it for the next step.
6. Go to test server
Remove the default website from IIS Manager.
Copy the published project to the folder : C:\inetpub\wwwroot.
Add new website.
Stop the IIS Server.
7. Configure application pool on IIS server
Select application pool for tuexample in the IIS Manager.
Right click and choose Advanced Settings.
Set the Load User Profile to True.
8. Startup application
Startup application by typing http://localhost in Internet Explorer and choose
Variant 1 (Login med en-gangsnøgle).
This will fail as the App pool user has no priviliges to access the website's database file.
This failed request will however create the App pool user and allow us to grant access rights for the newly created user.
9. Grant access to App data files
Grant full access to app data files (database file log file) for
App Pool user.
This can be done by doing the icacls command from a DOS prompt.
cals certs\DanIDTestTU.pfx /grant tuexample:(F)
10. Start the IIS server again
11. Test the TU-exampleTest the TU-example again to verify that it works by inserting the URL:
http://localhost/ into a browser.
If you have specified a default html file in your project, this must be added as well:
http://localhost/Default.aspx.
12. Running the TU example with your own production certificateNow you are done with the test part of the release, and are ready to deploy a version with your production certificate.