Shift4 Interface to POSitouch (POSibridge) Technical Installation Guide
Transcription
Shift4 Interface to POSitouch (POSibridge) Technical Installation Guide
Shift4 Interface to POSitouch (POSibridge) Technical Installation Guide ii POSibridge Technical Installation Guide Copyright Notice Shift4 Corporation 1491 Center Crossing Road Las Vegas, Nevada 89144 www.shift4.com POSibridge Technical Installation Guide Publication Date: 1/26/2010 Copyright © 2010 Shift4 Corporation. All rights reserved worldwide. No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means, electronic, mechanical, photocopying, recording or otherwise, without the prior written permission of Shift4 Corporation. The contents of this publication are proprietary information of Shift4 Corporation. Shift4 Corporation reserves the right to revise this document and to periodically make changes to the content thereof without any obligation or notification to any organization of such revisions or changes unless required to do so by prior written agreement. Shift4®, 4Go Secure Suite®, $$$ IN THE BANK®, Fraud Sentry® and IT'S YOUR CARD® are products and Registered Trademarks of Shift4 Corporation. DOLLARS ON THE NET℠, Universal Transaction Gateway™, UTG™, 4Go™, 4Go SafeSwipe™, i4Go℠, Secure Suite 4 Micros™, NetAPI™, NetAudit™ and NetCharge™ are products and services of Shift4 Corporation. All other Trademarks and Registered Trademarks are marks of the various companies and/or organizations. "Secure Payment Processing," "Tokenization," and "TOKENSTORE" are Service Marks of Shift4 Corporation. All graphics are © copyright of Shift4 Corporation. Notice of Confidentiality This document contains information that is proprietary to and/or confidential of Shift4 Corporation. It carries the Shift4 classification “External Use NDA.” It is provided for the sole purpose of specifying the point-of-sale interface to Shift4 Corporation. The recipient agrees to maintain this information in confidence and not reproduce or otherwise disclose this information. Please refer to the signed Bilateral Non-Disclosure and Confidentiality Agreement for additional agreements and expectations. Notice to Government End Users If any Shift4 product is acquired under the terms of a DoD contract: Use, duplication or disclosure by the Government is subject to restrictions as set forth in subparagraph (c)(1)(ii) of 252.227-7013. Civilian agency contract: Use, reproduction or disclosure is subject to 52.227-19 (a) through (d) and restrictions set forth in the accompanying end user agreement. Unpublished-rights reserved under the copyright laws of the United States. © 2010 Shift4 Corporation. All rights reserved. External Use NDA iii Table of Contents Copyright Notice ii Table of Contents iii Chapter 1 - Getting Started 1 Using the Guide 2 Who Should Use This Guide? Assumptions Related Documentation 2 2 3 Product Support 4 Live Support On the Web Feedback 4 4 4 Chapter 2 - Security and POSibridge 5 Shift4 Tokenization 6 Security Best Practices 7 Networking Guidelines Wireless Implementations Remote Access 7 7 7 System Privileges Password Safety Log Data Prior Data Sanitization 8 8 8 8 Chapter 3 - POSibridge Installation 9 Before You Begin 10 Installing POSibridge 11 Chapter 4 - POSibridge Configuration 15 Editing the Web Server 16 Adding a POSitouch Connection 17 Adding the UTG Connection 19 Adding Mail Notifications 22 Chapter 5 - POSitouch System Configuration 23 Modifying 4Go in the UTG TuneUp 24 Editing TRANSERV.ini 27 Editing SPCWIN.ini 28 POSitouch Back Office 29 Configuring Gift Cards 30 Chapter 6 - POSibridge Interface Task Explorer 31 32 © 2010 Shift4 Corporation. All rights reserved. External Use NDA iv POSibridge Technical Installation Guide Default Settings Additional Settings 32 32 Advanced Options 34 Filter Trace Settings 34 34 APPENDIX A - Revision History © 2010 Shift4 Corporation. All rights reserved. External Use NDA 35 1 Chapter 1 - Getting Started Welcome to the Shift4® Interface to POSitouch. Chapter Topics: Using the Guide Product Support © 2010 Shift4 Corporation. All rights reserved. External Use NDA 2 POSibridge Technical Installation Guide Using the Guide The Shift4 Interface to POSitouch (POSibridge) acts as a bridge between POSitouch and the Shift4 Universal Transaction Gateway™ (UTG™). When a transaction is initiated by a POSitouch system, POSibridge converts and then sends the data to the UTG: From there, the UTG continues with a seamless, secure transaction processing procedure: For additional information about the UTG, see the Universal Transaction Gateway Technical Reference Guide. Who Should Use This Guide? The POSibridge Technical Installation Guide provides detailed information on installing POSibridge and configuring its various components. This guide is intended for individuals familiar with installing, programming, configuring, and updating the POSitouch system, such as: l Programmers/Installers l Dealers l Customer Service Representatives l Training Personnel l MIS/IT Personnel Assumptions The POSibridge Technical Installation Guide assumes the following knowledge or expertise: l Network configuration l Operational understanding of PCs © 2010 Shift4 Corporation. All rights reserved. External Use NDA 3 Chapter 1 - Getting Started Using the Guide l Understanding of POS terminology and concepts l Familiarity in configuring or installing POSitouch systems Related Documentation The following Shift4 documents contain information about POSibridge-related products. All of the documents are available from the Shift4 website. If you do not have access to the Internet, contact Shift4 as described in the Product Support section to obtain these documents: l Universal Transaction Gateway Technical Reference Guide l DOLLARS ON THE NET℠ User Reference Guide l 4Go SafeSwipe™ Technical Reference Guide © 2010 Shift4 Corporation. All rights reserved. External Use NDA 4 POSibridge Technical Installation Guide Product Support For assistance with this and any other Shift4 product, visit the website at www.shift4.com. It provides access to the Shift4 FAQ page, where answers to general and technical questions regarding the entire Shift4 product line are available. Live Support Information about troubleshooting techniques and handling special problems that may occur during installation or configuration can be obtained by contacting the Shift4 Support department at (702) 597-2480, option 2. On the Web The Shift4 website at www.shift4.com offers technical notes, patches, and guides. 24 hours a day, 7 days a week, 365 days a year. The Shift4 website also contains Troubleshooting and FAQ sections to provide additional guidance. Feedback Your feedback regarding Shift4 products and documentation is welcome and encouraged and we appreciated your comments. If you have any documentation comments or suggestions about this or any other Shift4 product, please send them to us at [email protected]. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 5 Chapter 2 - Security and POSibridge POSibridge is implemented in conjunction with 4Go and the UTG, which along with Shift4 Tokenization℠ provide data security for POSibridge when installed and configured as instructed in this guide. This chapter includes an overview of Tokenization and provides information about important best practices to help ensure security. The Payment Application-Data Security Standard (PA-DSS) is derived from the PCI Data Security Standard (DSS) and is used by Payment Application-Qualified Security Assessors (PAQSAs) to validate compliance. PA-DSS validation is the payment application vendor's responsibility. This chapter must not be construed as a roadmap to PCI DSS compliance or a guarantee that Shift4 will render a merchant PCI DSS compliant when POSibridge is used. This chapter is primarily devoted to security best practices relative to your payment application and cardholder data environment and is far from all inclusive. Refer to the PCI Data Security Standard (DSS) for complete details on all of the security requirements for cardholder data that is processed, stored, and transmitted: https://www.pcisecuritystandards.org/pdfs/pci_pa_dss.pdf Chapter Topics: Shift4 Tokenization Security Best Practices © 2010 Shift4 Corporation. All rights reserved. External Use NDA 6 POSibridge Technical Installation Guide Shift4 Tokenization Shift4 has developed Tokenization℠ technology that enables merchants and payment application vendors to enjoy the highest level of payment processing security possible without requiring a lot of time, money, or resources. Merchants running Shift4 Tokenization technology in their point-of-sale (POS) system or property management system (PMS) will dramatically simplify their PCI compliance requirements because cardholder data is never stored in the system or anywhere else on the property. A purchase using Tokenization begins like any other transaction. The merchant swipes the card data and sends it to Shift4 over the UTG fully encrypted. Shift4 sends the card data on to the processor and receives back from the processor an approval. All steps to this point are the same; it is after this point where the process differs. Instead of sending back the card data to the merchant and the POS system, Shift4 turns the data into a token. A token is a globally unique, randomized, 16-character representation of the credit card data. For payment applications and merchants who utilize Shift4, only the token is stored in their system. The token spans the lifetime of the transaction, even into history, so it provides all the same support for tips, tabs and incremental authorizations. It is stored on the POS system and when an incremental authorization is required on the card, the token is sent to Shift4. The token represents a specific credit card transaction and card data that is stored in Shift4's data center. When it is sent through, Shift4 translates that token into the card data and sends it to the processor. The processor sends back the authorization code; Shift4 turns it back into a token and sends that along with the approval code to the merchants. The authorization goes through and again no credit card data is stored on the system. That means that the merchant doesn't need the card number or data past the initial request, so there is absolutely no reason to store this potentially dangerous information. For additional information about using this advanced security feature, have your POS vendor contact [email protected]. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 7 Chapter 2 - Security and POSibridge Security Best Practices Security Best Practices While Shift4 products provide robust, intuitive security controls, there are security best practices that must be enforced by the merchant to ensure cardholder data security. Review the following merchant responsibilities, and reference the PCI DSS website at http://www.pcisecuritystandards.org for the description of secure networks. Networking Guidelines Shift4 Interface to POSitouch must be installed in a trusted network segment, not the DMZ, to avoid exposing data to corruption or theft. Shift4 recommends that all servers and stations be located on a dedicated subnet (network) and protected from the Internet by a firewall. Wireless Implementations Ensure wireless networks transmitting cardholder data or connected to the cardholder data environment use strong encryption for authentication and transmission in accordance with the PCI DSS Requirement 4.1.1. From a security best practice perspective, Shift4 recommends avoiding the use of wireless networks as they are less secure than wired implementations. However, in the event wireless networks must be used: 1. Change the default SSID on the wireless router. 2. Configure your wireless router to never broadcast the SSID. 3. Use the WPA2/AES protocol; it fully implements the mandatory elements of the IEEE 802.11i standard, for all wireless networks transmitting cardholder data or connected to the cardholder data environment. 4. Do not use WPA/TKIP or WPA2/TKIP because they can be easily compromised. TKIP is also vulnerable to ARP poisoning. 5. Use static, RFC 1918 compliant IP addresses on all wireless nodes. 6. Enable MAC address filtering on the wireless router to guard against IP spoofing. 7. Setup the wireless router ACL to white-list only those wireless nodes – IP & MAC address – that are allowed to connect. Deny connection requests by all others. 8. All other wireless access points not part of the payment system must be logically segregated from the cardholder trusted network segment by a firewall. Remote Access Never install hardware or software that is not required, such as remote access mechanisms. If it must be installed, remote access to the cardholder data environment, which includes the payment application, must be restricted to only those individuals that require access to do their job. Remote access must be authenticated with two-factor authentication in accordance with PCI DSS Requirement 8.3. Ensure all remote users have unique user names and passwords. Remote access activity by vendors and contractors must be monitored. Deactivate their user accounts when not in use. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 8 POSibridge Technical Installation Guide System Privileges Administrative access is required to install all Shift4 products in the Shift4 branch of the installation directory, with "directory create" permissions, "file change" permissions, and complete "read/write" permissions for the HKEY_LOCAL_MACHINE\SOFTWARE\Shift4 Corporation folder in the Registry. Password Safety Passwords for user accounts must be strong strings of at least seven alpha-numeric characters. Eight or more characters with numbers, a mix of uppercase and lowercase letters, and special characters would be considered a strong password. Never use dictionary words or the user name for passwords. WARNING! Do not use any vendor-provided, default passwords. Doing so will render your system vulnerable and violate PCI DSS R2. Log Data PCI DSS R10 requires that all log data be retained for a minimum of 12 months. Configure all log settings to ensure compliance. It may be necessary to incorporate an offline storage procedure (tape, DVD, etc.) to reduce the amount of disk space used to store log data and still comply with the DSS logging requirement. Prior Data Sanitization All files retaining sensitive cardholder data must be securely deleted after the Shift4 Interface to POSitouch has been successfully installed and configured. Securely deleted data must not be recoverable from a disk. Most of the sensitive information is found in old log files and journals. The logging and journal features in the system must also be modified to prevent the creation of new, non-secure records. Once the logging features are disabled, the Shift4 Interface to POSitouch creates new, secure records of card-processing activity. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 9 Chapter 3 - POSibridge Installation This chapter contains information about installing POSibridge and the steps you must take before installation. Chapter Topics: Before You Begin Installing POSibridge © 2010 Shift4 Corporation. All rights reserved. External Use NDA 10 POSibridge Technical Installation Guide Before You Begin The installation process consists of obtaining the files, installing POSibridge, and configuring POSibridge through the POSibridge TuneUp utility. Shift4 provides an installer containing the installation files through a web download. Before you begin installation of POSibridge, verify the following: l The system onto which you are installing POSibridge has a live Internet connection. l The Universal Transaction Gateway (UTG) is properly configured and running. Tip: You can install POSibridge on any system with a networked connection to the POSitouch server. Shift4 recommends installing POSibridge directly on the POSitouch server. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 11 Chapter 3 - POSibridge Installation Installing POSibridge Installing POSibridge To install POSibridge, perform the following steps: 1. Download POSibridge at http://www.shift4.com/downloads/POSibridgesetup.exe and save the file to the desktop of the system onto which you are installing POSibridge. 2. Double-click and then click Next. 3. Review the License Agreement, click I accept the terms of the License Agreement, and then click Next. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 12 POSibridge Technical Installation Guide 4. Confirm the default destination folder for installation or click Change... to specify a different location and then click Next. 5. Click Next to begin installation. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 13 Chapter 3 - POSibridge Installation Installing POSibridge 6. Select Run POSibridge TuneUp now and click Finish. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 14 POSibridge Technical Installation Guide © 2010 Shift4 Corporation. All rights reserved. External Use NDA 15 Chapter 4 - POSibridge Configuration After you install POSibridge, you must configure the settings using the POSibridge TuneUp. The configuration process is comprised of the following primary steps: Chapter Topics: Editing the Web Server Adding a POSitouch Connection Adding the UTG Connection Adding Mail Notifications © 2010 Shift4 Corporation. All rights reserved. External Use NDA 16 POSibridge Technical Installation Guide Editing the Web Server To edit the default Web server, perform the following steps: 1. Open POSibridge TuneUp if you have not already done so. 2. On the Options tab, select the WebServer block and then click Edit. 3. In the Web Server window, type the following information: l l l l From the Host Address list, select the IP address of the machine. If you have multiple network cards, select the IP address for a network card that has an Internet connection. Do not modify Listen Port unless instructed to do so by Shift4. The default port is 26908. (Optional) In the Common Name (SSL) box, type a descriptive server name. (Optional) In the Allowed IP Addresses box, type the IP addresses that are allowed access to the Web Server. 4. Click OK. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 17 Chapter 4 - POSibridge Configuration Adding a POSitouch Connection Adding a POSitouch Connection To add a POSitouch Connection, perform the following steps: 1. In the Option area of the POSibridge TuneUp window, click Add and then select POSitouch Connection. 2. In the POSitouch Connection window, type the following connection information: l In the Connection Name box, type a descriptive name. l In the Listen Connection box, type the IP address of the location of POSibridge. l In the Continuous Connection box, type the IP address of the location of POSitouch. l In the Port ($ for Hex) boxes, do not change the default unless instructed to do so by Shift4. 3. In the Merchant Information area of the POSitouch Connection window, type your Shift4 Merchant ID (MID) in the Merchant Id box. 4. Contact the Shift4 Support department at (702) 597-2480, option 2 for assistance in using the following optional settings in the Merchant Information area: l (Optional) In the Serial Number Override box, type your API Serial Number that corresponds to the Shift4 MID. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 18 POSibridge Technical Installation Guide l l l (Optional) In the Password Override box, type your API password that corresponds to the API Serial Number. Type your API password again in the Password Verify box. (Optional) In the By Terminal area, click Add if you have different revenue centers and want to assign MIDs to specific POS terminals: In the Terminal Id box, type the terminal identification provided by your POS vendor. l In the Merchant Id box, type the Merchant ID (MID) for the account. l In the Serial Number Override box, type your API Serial Number. l l In the Password Override box, type your API password. Type your API password again in the Password Verify box. Click OK. 5. From the Settlement Method list of the POSitouch Connection window, select Online Settlement (default) or Offline Settlement. 6. In the Acceptable Errors box, type the Primary code for each acceptable error message. By default, no error codes are entered. Refer to Appendix A in the UTG Reference Guide for a list of UTG error codes. 7. Click OK. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 19 Chapter 4 - POSibridge Configuration Adding the UTG Connection Adding the UTG Connection To add the UTG connection, perform the following steps: 1. In the Option area of the POSibridge TuneUp window, click Add, and then select UTG Connection. 2. In the UTGv2 Connection window, type the following information: l l l l In the Task Description box, type a descriptive name for the connection. In the UTG Address box, type the IP address of the customer’s configured UTG thread that will listen for transaction data from POSibridge. In the UTG Port ($ for hex) box, type the port number defined by the Interface Vendor System. The default port is 17476 ($4444 hex). In the Encryption Passphrase (if any) box, type the passphrase entered in the UTG thread that will listen for transaction data, if one was entered. Type the passphrase again in the Verify Password box. Requirement: If you use an Encryption Passphrase with POSibridge, you must configure 4Go and POSibridge to use separate TCP/IP threads for UTG communication. 4Go SafeSwipe and POSibridge cannot share a single TCP/IP thread to communicate with the UTG because 4Go CANNOT use an encryption passphrase. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 20 POSibridge Technical Installation Guide l l In the Authorization Connection Timeout box, type the number of seconds the UTG will wait before returning a failed authorization. In the Settlement Connection Timeout box, type the number of seconds the UTG will wait before returning a failed settlement. Use of a passphrase and the phrase must be the same for POSibridge and UTG. 3. Click OK. 4. In the Option area of the POSibridge TuneUp window, select the UTG connection and then click the Advanced tab. 5. On the Advanced tab of the POSibridge TuneUp window, perform the following tasks: l l l l In the Worker Threads box, type the number of processing threads for use by POSibridge. The default is 4. (Optional) In the Memory Monitor area, select the Enabled box to activate automated memory usage reporting. In the Frequency list, select a memory reporting interval option. In the Destination box, type the IP or e-mail address of the memory reports recipient. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 21 Chapter 4 - POSibridge Configuration Adding the UTG Connection 6. Click Trace Configuration and adjust the following settings: l In the Directory box, type the directory path where the transaction files will be placed. The directory path must be a local drive, not a UNC path. l In the Max Files box, type the maximum number of trace files that can be saved. l In the Blocks box, type or select the amount of trace to save to memory. l In the Bytes Each box, type the amount of trace to save in each file. l l l l (Optional) In the Suffix field, type up to two characters to place in front of the trace file names for ease of locating. (Optional) Select the High Capacity box to enable additional configuration options. In the Files per Zip box, type or select the number of trace files to add to compressed (*.zip) folders. In the Days Cutoff box, type or select the number of days to store the trace files, up to 120 days. 7. Click OK. Tip: For additional information about the UTG, see the UTG Technical Reference Guide. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 22 POSibridge Technical Installation Guide Adding Mail Notifications To add mail notifications, perform the following steps: 1. In the POSibridge TuneUp window, click the Options tab. 2. In the Option area, click Add and then select Notification. 3. In the Mail Notification window, type the following information: l l l l l l In the Mail Server Name box, type the name of the SMTP server the customer uses to send e-mail. In the Port ($ for hex) box, type the TCP port the SMTP server uses to send outbound mail to the server. The default port is 25. In the Source Domain field, type the domain name that services the mail server. In the Alert Recipients box, type the complete e-mail addresses of all users who should be informed of errors within the system that may cause severe problems. Use commas or semicolons to separate addresses. In the Status Recipients box, type the complete e-mail addresses of all users who should be informed of non-urgent issues and standard operating status. Use commas or semicolons to separate addresses. Click OK. 4. Click Save on the POSibridge TuneUp window to save the configurations and close POSibridge TuneUp. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 23 Chapter 5 - POSitouch System Configuration In order to connect POSitouch and the UTG, you must modify two initialization files as well as settings in POSitouch Back Office and the Universal Transaction Gateway (UTG) to reference POSibridge. See the Shift4 Universal Transaction Gateway Technical Reference Guide for additional information about the UTG. Chapter Topics: Modifying 4Go™ in the UTG TuneUp Editing POSitouch Back Office Editing TRAVSERV.ini Editing SPCWIN.ini © 2010 Shift4 Corporation. All rights reserved. External Use NDA 24 POSibridge Technical Installation Guide Modifying 4Go in the UTG TuneUp The Api Interfaces create connections from the UTG to POSitouch so that transactions can flow back and forth. To configure Api Interfaces, perform the following steps: 1. Open UTG TuneUp: l l Click TuneUp on the menu bar in UTG Standalone, or Select Programs > Shift4 Corporation > Universal Transaction Gateway > UTG (v2) TuneUp from the Windows® Start menu. 2. In the UTG TuneUp window, click the Api Interfaces tab. 3. In Interface area of the API Interfaces tab, click Add, and then select TCP/IP. 4. In the Task Description box of the TCP/IP API window, type a name to identify the interface such as 4Go_TcpHost, and then click Clients. 5. In the Edit Client IP List window, click Add. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 25 Chapter 5 - POSitouch System Configuration Modifying 4Go in the UTG TuneUp 6. In the Add Client IP Address window, do the following for every workstation or server running 4Go: l l In the Remote IP Address box, type the IP address of the workstation or server running 4Go. In the Interface Type box, select 4Go if you are adding a workstation or 4Go and Secure POS if you are adding a server. 7. In the TCP/IP API window, do the following: © 2010 Shift4 Corporation. All rights reserved. External Use NDA 26 POSibridge Technical Installation Guide l l l In the Host Address box, select the IP address of the machine. In the Port ($ for hex) box, type the port number that matches the port defined in the UTG Connection of the POSibridge TuneUp. See Adding the UTG Connection for additional details. In the Encryption Passphrase (if any) box, type the passphrase entered in the UTG thread that will listen for transaction data, if one was entered. Type the passphrase again in the Verify Passphrase box if applicable. Requirement: If you use an Encryption Passphrase with POSibridge, you must configure 4Go and POSibridge to use separate TCP/IP threads for UTG communication. 4Go SafeSwipe and POSibridge cannot share a single TCP/IP thread to communicate with the UTG because 4Go CANNOT use an encryption passphrase. l (Optional) Select Bin Management to enable BIN (Bank ID Number) management. l If Bin Management is enabled, type an amount in the Floor Limit box. l Click OK. 8. In the UTG TuneUp window, click the 4Go tab and do the following: l Select the Enabled box. l In the Broadcast Addresses area, select the address of the client network. l In the Host Address list, select the IP address of the machine. l In the Port ($ for hex) box, type 17504. 9. Click Save. Tip: For additional information about the UTG, refer to the UTG Technical Reference Guide. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 27 Chapter 5 - POSitouch System Configuration Editing TRANSERV.ini Editing TRANSERV.ini In order to connect POSitouch and the UTG, you must modify transerv.ini. This file is located in the POSitouch installation folder, which is typically labeled SC. If you are unable to locate the POSitouch folder, click Start > Search and perform a Windows system-wide search. To edit the TRANSERV.ini file, perform the following steps: 1. Locate TRANSERV.ini in the POSitouch folder on the drive to which POSitouch is installed and open it with a text editor. 2. Verify that the file contains all of the information shown below. ; ********************************** ; TRANSERV.INI Was Created on ; 12-24-2000 23:38:52 ; By AutoConfig util Ver 1.0 Rev 0 ; *********************************** [Transerv] NetworkInterface=YES AtomInterface=NO FileInterfaceOLD=NO FileInterface=YES PORT1=COM1:2400,N,8,1 [Network] TCP/IP=YES Spcwin=10.0.2.61 ListenSpcwinPort=5002 ConnectSpcwinPort=5003 3. If the file is missing sections or parameters, type them directly into the file. 4. In the TRANSERV.ini file, verify the following settings: l NetworkInterface=YES l TCP/IP=YES 5. Change the value of Spcwin to match the IP address listed in the Continuous Connection box of the POSitouch Connection window. 6. Change the value of ListenSpcwinPort to match the port listed in the Continuous Connection box of the POSitouch Connection window. 7. Change the value of ConnectSpcwinPort to match the port listed in the Listen Connection box of the POSitouch Connection window. 8. Save the settings and close the text editor. Tip: See Adding a POSitouch Connection for additional information about the POSitouch Connection window. The POSitouch Connection window of the POSibridge TuneUp contains the IP addresses and ports for the Continuous and Listen Connections. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 28 POSibridge Technical Installation Guide Editing SPCWIN.ini In order to connect POSitouch and the UTG, you must modify the spcwin.ini file. This file is located in the POSitouch installation folder, which is typically labeled SC. If you are unable to locate the POSitouch folder, click Start > Search and perform a Windows system-wide search. To edit the SPCWIN.ini file, perform the following steps: 1. Open SPCWIN.ini with a text editor. 2. Verify that the file contains all of the information listed in the file. If the file is missing sections or parameters, type them directly into the file. [SpcWin] AuxAutoDetect=YES AuxDetectDelay=10 VirtualOut=NO Key=PARALLEL FullScreen=TRUE CC_debug=YES CC_SocketClose=YES WindowsMessagePump=YES [Network] TCP/IP=YES Spcwin=10.0.2.61 BackupServer=10.0.2.67 TranservChannel1=10.0.2.61 ListenTranservChannel1Port=5002 ConnectTranservChannel1Port=5003 Device1=10.0.2.67 Device2=10.0.2.60 Device3=10.0.2.32 [XML] XmlInPath=c:\sc\xml_in 3. In the SPCWIN.ini file, verify TCP/IP=YES. 4. Change the values of Spcwin and TranservChannel1 to match the IP address listed in the Listen Connection box of the POSitouch Connection window. 5. Change the value of ConnectTranservChannel1Port to match the port listed in the Listen Connection box of the POSitouch Connection window. 6. Change the value of ListenTranservChannel1Port to match the port listed in the Continuous Connection box of the POSitouch Connection window. 7. Save the settings and close the text editor. Tip: See Adding a POSitouch Connection for additional information about the POSitouch Connection window. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 29 Chapter 5 - POSitouch System Configuration POSitouch Back Office POSitouch Back Office To modify the credit card type settings in POSitouch Back Office, perform the following steps: 1. If you have not already done so, open SpcWin by clicking Start > Programs > POSitouch > SpcWin. 2. In SpcWin, click Office. next to SWITCH TO BACK OFFICE SYSTEM to open POSitouch Back 3. Click Setup > Credit Cards > Credit Card Types. 4. In the Credit Cards: Setup Credit Card Types window, select 1- TRNSRV 1 in the Channel column for every Payment Type row. 5. Click Save. In order to access the correct section of POSitouch Back Office, you must go through the SpcWin interface. Do not open Back Office through the Windows Start menu as it opens a different program. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 30 POSibridge Technical Installation Guide Configuring Gift Cards In order to perform gift card transactions with POSitouch, you must set up your system with the appropriate licenses and configurations to support gift card functionality. Shift4 does not provide support for POSitouch gift card configuration or licensing; you must contact your POSitouch vendor directly for further instructions. POSibridge fully supports partial authorization for standard gift cards only. Branded gift cards such as those offered by American Express or Visa, do not support partial authorizations due to the way that POSitouch handles their tenders. If you have the necessary licenses and configurations required for performing gift card transactions, configure the gift card form of payment by performing the following steps: 1. If you have not already done so, open SpcWin by clicking Start > Programs > POSitouch > SpcWin. 2. In SpcWin, click Office. next to SWITCH TO BACK OFFICE SYSTEM to open POSitouch Back 3. Click Setup > Credit Cards > Forms Of Payment. 4. In the Credit Cards: Forms of Payment window, select Authorization Required and Draft Capture Allowed in the Form of Payment row that applies to gift cards (GIFT/CAM/F in the following example). 5. Click Ok. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 31 Chapter 6 - POSibridge Interface The POSibridge interface displays detailed information and real-time summaries of running tasks. The default tasks are checked in the Task Explorer and displayed in the status area. POSibridge also provides access the POSibridge TuneUp and allows you to modify trace file settings. Chapter Topics: Task Explorer Advanced Options © 2010 Shift4 Corporation. All rights reserved. External Use NDA 32 POSibridge Technical Installation Guide Task Explorer The Task Explorer contains a list of features you can select to monitor status. Any feature listed may be added or deleted. Select the box of a task to add it to the status area. When you add a new task, the display in the status area changes to show the current status of only the new task. Click At-A-Glance to return to the full status. Default Settings When you open POSibridge, the At-a-Glance list shows the tasks that are detailed in the status area by default. These are indicated by check marks next to the task name. All other settings are additional and may be enabled at any time as recommended by Shift4 or for troubleshooting. The default tasks are: l Alerts: Shows any program issue. l Web Supervisor: Shows the status of and connections to the Web server. l Web Dispatcher: Shows the status of and connections to the Web server. l l l POSiCnct: Shows the status of the connection between the POSitouch system and POSibridge. UTG Connect: Shows the status of the connection between the UTG and POSibridge Orphan Events: Shows events that are dispatched without a target for troubleshooting purposes. Requirement: Click Refresh to reset the At-a-Glance list to the default settings. Additional Settings The following optional settings are available for review and monitoring but cannot be saved to the default settings. Clicking Refresh removes any additional settings that you selected: l Activity: Displays the activity log which contains information such as update sessions. l Bandwidth: This setting is unavailable. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 33 Chapter 6 - POSibridge Interface Task Explorer l Connector Sessions: Shows a list of active connection threads in the POSibridge. l Events: Monitors thread activity for Workers and Tasks. l Listeners: Shows the global pool of listeners. l l l l l Mail: Shows the status of the mail subsystem within the POSibridge, including queued messages. Memory Manager: Shows memory settings by thread or detailed by thread. Memory Statistics: Shows how memory is allocated. This setting is used for debugging the UTG. Summary: Shows the fastest, slowest, and most recent transactions processed. Trace: Shows complete transaction details, including full card numbers, for debugging purposes. Tip: For additional information about Trace and Trace Settings, see Advanced Options. l Web Sessions: Shows the status of and connections to the Web server. l SSL Web Sessions: Shows the status of and connections to the Web server. l l WebServer: Shows all active connections to the WebServer, including Web and SSL Web Sessions. Legacy: Shows all of the essential activities in a single page layout. © 2010 Shift4 Corporation. All rights reserved. External Use NDA 34 POSibridge Technical Installation Guide Advanced Options Filter The Filter option displays a column of modules. These modules represent each separate section in the UTG and are used to select and clear modules operating inside the UTG. When any combination of modules is selected, the activity written to the trace by the selected modules is displayed in the large center section and can be scrolled back and forth for review. To activate a filter, perform the following steps: 1. On the Default POSibridge window, click Advanced > Filter. 2. Double-click the name of the modules you want to display. l You can also right-click anywhere in the module list and turn all modules on or off. 3. Select the Polling Active box to refresh the center section with the activity from the checked modules according to the frequency selected. Trace Settings Trace files contain information about most major functions of the UTG including configuration parameters, connection attempts, and exceptions. They are typically stored in the root directory of the C drive. The naming convention of trace files is Uxxxx.trc, where “xxxx” is a sequential four-digit number. A separate trace file is created every time the UTG restarts with the oldest trace file deleted, keeping the number of files limited to set parameters. For more information about trace settings see Adding the UTG Connection. To change trace options, click Advanced and then select any of the options described below: l l l Rollover: Closes the current “Unnnn.trc” file and starts a new one. Verbose: Displays additional details in the trace files without compromising PCI DSS regulations. Clear: Erases the memory contents of the trace (not the disk-based trace). © 2010 Shift4 Corporation. All rights reserved. External Use NDA 35 APPENDIX A - Revision History This revision history provides a chronological record of changes made to the POSibridge Technical Installation Guide. It does not include layout and formatting changes or changes which do not affect users. For support with any Shift4 product, contact the Shift4 Support department at (702) 579-2480, option 2. Send any comments or suggestions about the Technical Installation Guide to [email protected]. Revision Date 1/26/2010 1/26/2010 Affected Section Description Changed "TuneUp" to "POSibridge TuneUp" to match window name and distinguish from "UTG TuneUp" All Chapter 2 Removed "Data Security Standards" section (including PCI DSS and PA-DSS tables). POSibridge is implemented in conjunction with 4Go and the UTG, which provide the data security for POSibridge Updated the Security Best Practices 1/26/2010 Chapter 3 Updated the instructions for installing POSibridge 1/26/2010 Chapter 4 Added example of POSibridge TuneUp window 1/26/2010 Chapter 5 Updated the instructions for modifying 4Go in UTG TuneUp for POSibridge 1/26/2010 Chapter 6 Updated the example Task Explorer screen Chapter 7 Removed list of UTG error messages and replaced it with a link to the UTG Reference Guide so that readers always have access to the most up-to-date list of messages 1/26/2010 © 2010 Shift4 Corporation. All rights reserved. External Use NDA 36 POSibridge Technical Installation Guide © 2010 Shift4 Corporation. All rights reserved. External Use NDA