Installing the sample authentication website

Before you begin

Ensure that you have Web Services Enhancements (WSE) 3.0 for Microsoft .NET installed. This is essential to enable the sample website to function correctly.

For more information about pre-installation requirements for the sample website, see SDK sample websites and Prepare OneSpan Authentication Server for SDK sample website installation.

Installing the sample website

To install the sample website (IIS 8)

1. Install IIS 8 via Control Panel > Programs and Features > Turn Windows features on or off.

   Make sure that ASP.NET 4.5 is selected in the Web Server > Application Development section.

2. Open the Internet Information Services (IIS) Manager.

3. If the 32-bit version of the SDK is installed, enable 32-bit support:

   1. Expand the respective server node in the Connections pane and select Application Pools.
   2. In the Application Pools list, select DefaultAppPool > Advanced Settings.
   3. In the Advanced Settings dialog, set Enable 32-bit Applications to True and click OK.
      

      Sample website setup (IIS 8) – Enabling 32-bit applications

4. Expand Sites > Default Web Site in the Connections pane.

5. Double-click Authentication in the Default Web Site Home pane.

6. Verify that Anonymous Authentication is enabled.

   

   Sample website setup (IIS 8) – Enabling anonymous authentication

7. Install OneSpan Authentication Server SDK.

   For more information, refer to the OneSpan Authentication Server SDK Programmer's Guide.

8. Switch back to Internet Information Services (IIS) Manager and select Default Web Site > Add Application in the Connections pane.

9. In the Add Application dialog, configure the new application using the SDK installation path as Physical path and DefaultAppPool as Application pool.

   

   Sample website setup (IIS 8) – Adding application

10. Under the new application, add a new entry called index.aspx in the default document settings.

    

    Sample website setup (IIS 8) – Adding default document

11. Open the web.config file in the root of the web directory and set the following:

    1. SoapHostPrimary (https://authentication_server_ip)
    2. SoapHostBackup (https://authentication_server_ip)

12. Enable strong ciphers to allow SSL-secured SOAP communication with OneSpan Authentication Server using the default SSL cipher suite security level, i.e. Very High:

    1. Open the Windows Registry Editor.

    2. Add or modify the following registry key values:

       [HKLM\SOFTWARE\Microsoft\.NETFramework\v4.0.30319] "SchUseStrongCrypto"=dword:00000001

       [HKLM\SOFTWARE\Wow6432Node\Microsoft\.NETFramework\v4.0.30319] "SchUseStrongCrypto"=dword:00000001

Next steps

When you have successfully installed the sample website, install the sample website certificate (see Installing the certification authority (CA) certificate for the sample website).