​​​Preconditions

• Company / developer have a Test VOCES certificate.
• If PID/CPR is needed: PID/CPR access granted and SPID obtained
• Microsoft .NET 4.0 Framework installed on test server
• Microsoft Sql Server 2012 Express installed on test server
• Microsoft Internet Information Server 7 installed on test server
• Windows server 2008 R2 installed on test server
• Certificate chain installed on server for trusted certificates

 

Walkthrough

1. Verify the certificate chain is installed
From the Run menu in Windows Server, type in: MMC.
Add snap-in and choose Certificates for Computer account and then Local computer.

 

 

Verify the highlighted certificates are installed.
If not, download a .p7b file containing all of them.

 
To install the certificate chain:
Right click on the file and choose Install Certificate.

 

 

 

Click Place all certificates in the following store.
Click Show physical stores and browse to Trusted Root Certification Authorities -> Local Computer. Click OK.

 

Click Next.

 

Click Finish.

 

 

Verify the highlighted certificates are installed, as described above.

2. Start the IIS Manager

 

 

3. Change certificate path in app.config & web.config
Change the certificate path in web.config and app.config to the location where the test certificates will be located on the test server.
For example C:\inetpub\certs\DanIDTestTU.pfx.
Note that this certificate file should be in the .pfx file extension.

4. Verify publish settings
Verify that the publish settings are as follows Project –> Package/publish settings.

 

 

5. Publish project
Publish the TU-example project (on the local development client).
Right click on TU example project and choose Publish.

 

Copy content from the Publish folder to the test server, and keep it for the next step.

6. Go to test server
Remove the default website from IIS Manager.
Copy the published project to the folder : C:\inetpub\wwwroot.
Add new website.

 

 

Stop the IIS Server.

7. Configure application pool on IIS server
Select application pool for tuexample in the IIS Manager.

 

 

Right click and choose Advanced Settings.

Set the Load User Profile to True.

 

 

8. Startup application
Startup application by typing http://localhost in Internet Explorer and choose Variant 1 (Login med en-gangsnøgle).
This will fail as the App pool user has no priviliges to access the website's database file.
This failed request will however create the App pool user and allow us to grant access rights for the newly created user.

9. Grant access to App data files
Grant full access to app data files (database file log file) for App Pool user.
This can be done by doing the icacls command from a DOS prompt.

 

 

cals certs\DanIDTestTU.pfx /grant tuexample:(F)

10. Start the IIS server again

11. Test the TU-example
Test the TU-example again to verify that it works by inserting the URL: http://localhost/ into a browser.
If you have specified a default html file in your project, this must be added as well: http://localhost/Default.aspx.

12. Running the TU example with your own production certificate
Now you are done with the test part of the release, and are ready to deploy a version with your production certificate.