Prerequisites

System requirements includes minimum hardware and software requirements that needs to install and run ADSS Web RA application in Windows Operating System.

Hardware Requirements

Following are minimum hardware requirements that must be available prior to install and run ADSS Web RA application.

Components	Requirements
Hard Disk Space	200 GB (Minimum)
Memory (RAM)	16 GB (Minimum) 24 GB (If the number of concurrent users is high) 32 GB (If the database is also deployed on the same system as the ADSS Web RA)
Processor	A Modern multi-core CPU such as Xeon E3-XXXX or E5-XXXX series is recommended
Processor Type	x64
HSM (Optional)	SafeNet Luna SA, Luna PCI, Luna G5 SafeNet Protect Server (PCI or External) nCipher nShield Solo or Connected HSMs Utimaco HSMs Azure Keyvault Amazon AWS Cloud HSM

Software Requirements

Following are minimum software requirements that must be installed prior to install and run ADSS Web RA application.

Components	Requirements
Operating Systems	Windows Server 2019 Windows Server 2016
Microsoft IIS	IIS 10 Application Development feature in IIS
IIS Rewrite Module	v2.1
.Net Framework	.Net Framework 4.7.2 or above
.Net Core Runtime and Hosting Bundle	ASP.NET Core Runtime 6.0.8 or above
Database Servers	Microsoft SQL Server 2019 Microsoft SQL Server 2017 Microsoft SQL Server 2016 Microsoft SQL Server 2014
Database Management Studio	Microsoft SQL Server Management Studio 2019 Microsoft SQL Server Management Studio 2017 Microsoft SQL Server Management Studio 2016 Microsoft SQL Server Management Studio 2014
Browsers	Google Chrome 40+ Mozilla Firefox 35+ Microsoft Edge 14+ IE 11 (No longer supported by Microsoft) Apple Safari 8+ Opera 26+
ADSS Server (as CA)	ADSS Web RA uses ADSS Server under the hood to create and manage certificates for the end user as a CA. ADSS Server can be installed on a separate machine or on the same machine for testing and proof of concept. It is recommended to keep the ADSS installation on a separate machine for a production environment. For further requirements related to the installation of ADSS Server, please refer to the installation guide of ADSS Server. ADSS Server 6.6 or above
DMZ Proxy Systems	A DMZ proxy server is recommended to provide enhanced security for ADSS Web RA. Supported web servers are: Windows Server + IIS, Apache or IBM HTTP Server Linux + Apache or IBM HTTP Server It is recommended to use a reasonable CPU, 4 GB RAM (Minimum), 2000 MB Disk Space for the web server machine. ADSS Web RA and ADSS Server support network proxies to allow authenticated access to external services. Certificate generation with local smartcards or USB tokens requires ADSS Server Go>Sign Service.

For testing and proof of concepts, ADSS Server and ADSS Web RA can be installed on the same machine along with the database server. However for optimal performance in a production environment, it is always recommended to install them on separately dedicated machines.

The details given above are the minimum set of requirements; for higher concurrent use of the application the system requirements may vary based on the load and performance expectations.

Pre-requisites

Please ensure that you have all the pre-requisites installed on the deployment machine.

Application Development feature in IIS

Enable the following feature in IIS of the deployment machine:

Microsoft .Net Core 6.0.8 Runtime & Hosting Bundle

Download the Microsoft .Net Core 6.0.8 runtime and hosting bundle from the following link:

Microsoft .Net Core 6.0.8 Runtime & Hosting Bundle

Scroll down to 6.0.8 version and download the highlighted hosting bundle installer

Once downloaded execute the installer by executing dotnet-hosting-6.0.8-win.exe

Agree to the license terms and conditions and press Install, it will take a few minutes to complete.

And after successful completion of the installation press Close.

To test if the installation was correct and components are reachable, run command line and type following command:

At this point, you need to restart the system to apply these changes effectively.

Microsoft IIS URL Rewrite Module 2.1

Download Microsoft IIS URL rewrite module 2.1 from the following link:

Microsoft IIS URL Rewrite Module 2.1

Navigating to this URL will present with the following screen:

Clicking on the green Install this extension will install the extension on the current machine. For offline installers click Additional Downloads which will bring you down to the list of the installers

Download "x64 installer" with your preferred language. For this documentation it’s English. Start the installation by executing the downloaded file in Administrator mode.

Accept the terms in the license agreement and click Install to proceed, the installation will take few minutes:

Click Finish once the installation is complete.

Unlock system.webServer/serverRuntime section in IIS

Open IIS
Select Server from left panel
Open Configuration editor from right pane under Management section

Unlock system.webServer/serverRuntime section in configuration editor of IIS.

The installation process for prerequisites is complete.

SMTP Server

ADSS Web RA uses email as the primary notification medium. User registration, and all notifications are sent via SMTP. Hence it is a critical part of the architecture and deployment. Details required are:

Hostname/IP address of SMTP server
Listening Port of SMTP server
TLS/SSL authentication to communicate with SMTP server (if required)
Username and password to authenticate to SMTP server (if required)
Email from Address for notifications sent from ADSS Web RA
Email to Address for alerts and warnings sent by ADSS Web RA
Email Subject for alerts and warnings sent by ADSS Web RA

If there is no alternative it is possible to still use ADSS Web RA. However, this involves copying the notification emails directly from the database and manually running the links therein. This usage is strongly discouraged in favour of a standard deployment though.