System requirements includes minimum hardware and software requirements that an operator needs to install and run ADSS Web RA application in Windows Operating System.


Hardware Requirements


Following are minimum hardware requirements that must be available prior to installing and running the ADSS Web RA application.


Components

Requirements 

Hard Disk Space
  • 200 GB (Minimum)

Memory (RAM)
  • 16 GB (Minimum)
  • 24 GB (If the number of concurrent users is high)
  • 32 GB (If the database is also deployed on the same system as the ADSS Web RA)

Processor
  • A Modern multi-core CPU such as Xeon E3-XXXX or E5-XXXX series is recommended

Processor Type
  • x64

HSM (Optional)
  • Thales Luna Network, PCIe, and USB
  • Entrust nShield Solo XC, Connect XC, and nShield EDGE
  • Utimaco CryptoServer SE Gen2
  • Microsoft Azure Key Vault
  • Amazon Cloud HSM 


Software Requirements


Following are minimum software requirements that must be installed prior to installing and running ADSS Web RA application.


Components

Requirements

Operating Systems
  • Follow this link to view details about supported OS:

https://manuals.ascertia.com/WebRA-v2.9.2/ADSS-WebRA-Server-Platform-Support.pdf

Microsoft IIS
  • IIS 10
  • Application Development feature in IIS 

IIS Rewrite Module
  • v2.1

.Net Framework
  • .Net Framework 4.8 or above

.Net Core Runtime and Hosting Bundle
  • ASP.NET Core Runtime 8.0.0 or above

Database Server
  • Follow this link to view details about Database Server:

https://manuals.ascertia.com/WebRA-v2.9.2/ADSS-WebRA-Server-Platform-Support.pdf

Browsers
  • Follow this link to view details about Web Browsers: 

https://manuals.ascertia.com/WebRA-v2.9.2/ADSS-WebRA-Server-Platform-Support.pdf

ADSS Server (as CA)

ADSS Web RA uses ADSS Server under the hood to create and manage certificates for the end user as a CA. ADSS Server can be installed on a separate machine or on the same machine for testing and proof of concept. It is recommended to keep the ADSS installation on a separate machine for a production environment. For further requirements related to the installation of ADSS Server, please refer to the installation guide of ADSS Server.

  • ADSS Server 6.6 or above

DMZ Proxy Systems

A DMZ proxy server is recommended to provide enhanced security for ADSS Web RA. Supported web servers are: 

  • Windows Server + IIS, Apache or IBM HTTP Server
  • Linux + Apache or IBM HTTP Server

It is recommended to use a reasonable CPU, 4 GB RAM (Minimum), 2000 MB Disk Space for the web server machine. ADSS Web RA and ADSS Server support network proxies to allow authenticated access to external services. Certificate generation with local smartcards or USB tokens requires ADSS Server Go>Sign Service. 



For testing and proof of concepts, ADSS Server and ADSS Web RA can be installed on the same machine along with the database server. However for optimal performance in a production environment, it is always recommended to install them on separately dedicated machines.


The details given above are the minimum set of requirements; for higher concurrent use of the application the system requirements may vary based on the load and performance expectations.


Pre-requisites


Please ensure that you have all the pre-requisites installed on the deployment machine. 


Application Development feature in IIS


Enable the following feature in IIS of the deployment machine:



Microsoft .Net Core 8.0.3. Runtime & Hosting Bundle


Download the Microsoft .Net Core 8.0.3. Runtime and Hosting Bundle from the following link:



Download the Hosting Bundle installer. 



Once downloaded, execute the installer by executing dotnet-hosting-8.0.-win.exe



The setup will begin and take a few minutes to complete. 

 



And after successful completion of the installation press Close.


To test if the installation was correct and components are reachable, run command line and type the following command:



At this point, you need to restart the system to apply these changes effectively. 


Microsoft IIS URL Rewrite Module 2.1


Download Microsoft IIS URL rewrite module 2.1 from the following link:

 


Navigating to this URL will present with the following screen:


Scroll down to find a list of links available for download.   




Download "x64 installer" with your preferred language. For this documentation it’s English. Start the installation by executing the downloaded file in Administrator mode. 



Accept the terms in the license agreement and click Install to proceed, the installation will take few minutes: 




Click Finish once the installation is complete.


Unlock system.webServer/serverRuntime section in IIS


  1. Open IIS
  2. Select Server from left panel 
  3. Open Configuration editor from right pane under Management section 


 


Unlock system.webServer/serverRuntime section in configuration editor of IIS.


 


The installation process for prerequisites is complete. 


SMTP Server


ADSS Web RA uses email as the primary notification medium. User registration, and all notifications are sent via SMTP. Hence, it is a critical part of the architecture and deployment. Details required are:


  • Hostname/IP address of SMTP server
  • Listening Port of SMTP server
  • TLS/SSL authentication to communicate with SMTP server (if required)
  • Username and password to authenticate to SMTP server (if required)
  • Email from Address for notifications sent from ADSS Web RA
  • Email to Address for alerts and warnings sent by ADSS Web RA
  • Email Subject for alerts and warnings sent by ADSS Web RA

If there is no alternative, it is possible to still use ADSS Web RA Server. However, this involves copying the notification emails directly from the database and manually running the links therein.  This usage is strongly discouraged in favour of a standard deployment though.