Minimum System Requirements
- Operating System: Microsoft Windows Server 2008/2008 R2
- Microsoft .NET Framework 4
Windows Identity Framework
This guide provides instructions for setting up the Secure Token Service (STS) on Windows Server 2008 OS or above.
The web server needs to have the Windows Identity Foundation (KB974405) installed for the appropriate windows version/architecture.
- The download required is available from: http://www.microsoft.com/en-gb/download/details.aspx?id=17331
- Ensure you download the appropriate version for your web server.
The web server that is going to host the services must have an HTTPS binding. The certificate used for SSL can also be used for the encryption and signing of the services.
To support single sign on, the Windows Authentication role service for the Web Server (IIS) role must be installed. This can be found in the Security section of the role services.
Active Directory Login User Field
Performance DNA will need to be configured with a mapping between users’ Active Directory (AD) accounts and their Performance DNA accounts. This can be defined either as the login ID in Performance DNA for new deployments (which must then match the users’ AD login accounts) or as an additional Performance DNA user field which must then be populated with AD account names for upgrades.
To support AD authentication via Firefox, follow the instructions for configuring Firefox to use Kerberos for SSO (https://docs.fedoraproject.org/en-US/Fedora//html/Security_Guide/sect-Security_Guide-Single_Sign_on_SSO-Configuring_Firefox_to_use_Kerberos_for_SSO.html).