NSD1179 How to Install One Time Password Server Prefetch ASP.NET... Application on IIS 7 and IIS 7.5 Fact Situation
Transcription
NSD1179 How to Install One Time Password Server Prefetch ASP.NET... Application on IIS 7 and IIS 7.5 Fact Situation
NSD1179 How to Install One Time Password Server Prefetch ASP.NET Web Application on IIS 7 and IIS 7.5 Fact Nordic Edge One Time Password Server, IIS 7.x, Prefetch ASP.NET Web Application Situation Installing the One Time Password Prefetch ASP.NET Web Application Solution The OTP prefetch application ships with two pages (two different scenarios). ● Self Service - SelfService.aspx is a self service page. The user logs in and gets a number of prefetch passwords by SMS or e-mail. ● Centralized Administration - CentralizedAdmin.aspx is a centralized administration page. An "OTP prefetch password"-administrator logs in and gets a number of prefetch passwords, for a selected user account, by e-mail. System Requirements ● Nordic Edge One Time Password Server 1.6 or later ● Microsoft .NET Framework 2.0 or later ● IIS 7.0 or IIS 7.5 Prerequisites ● Nordic Edge One Time Password Server installed and configured to use SMS or e-mail to send OTP ● Add ASP.NET support if using IIS 7.5 (ASP.NET is not default included with IIS 7.5) Installation ● Download the OtpPreFetch.zip ● Unzip OtpPreFetch.zip to ~inetpub/wwwroot/OtpPreFetch ● Start Internet Information Services (IIS) Manager ● Expand Sites, right click on an existing Web Site (Eg. Default Web Site) and click in Add Application... ● Fill in the form with Alias and Physical path (the path to the directory where you unzipped OtpPreFetch.zip). Click OK ● IIS configuration is done ● Open Intern Explorer and type the URL to the new OTP Prefetch web application. Eg. http:// localhost/OTPPrefetch ● Verify that the Web Application is working as expected. Type a username and the corresponding password and the user should receive a SMS with the Prefetch OTP code. INFO: The Prefetch application will read the mobile number from the users object in the LDAP directory. Figure: The SelfService.aspx Page Figure: The SMS-message with the Prefetch OTP code. Configuration Open ~/wwwroot/OtpPreFetch/bin/web.config with an editor like Notepad.exe. In the section <appSettings> you’ll find the host tag. The tag <system.web> provides language and culture support. <configuration> <appSettings> <add key="host" value="127.0.0.1:3100"/> </appSettings> <connectionStrings/> <system.web> <!-- <globalization enableClientBasedCulture="true" culture="Auto" uiCulture="Auto"/> --> <!-- NOTE: If Culture is set "Auto", Culture is set by the browser --> <!--globalization enableClientBasedCulture="true" culture="sv-SE" uiCulture="sv-SE"/--> <globalization enableClientBasedCulture="true" culture="en-US" uiCulture="en-US"/> ● Change, if necessary, the “host” value for your environment. ● To change the language support to swedish, uncomment the following row: <globalization enableClientBasedCulture="true" culture="sv-SE" uiCulture="sv-SE"/> Comment out the row for english language support: <!--globalization enableClientBasedCulture="true" culture="en-US" uiCulture="en-US"/--> Modify Content in SelfService.aspx or CentralizedAdmin.aspx ● If you want to change the default value (5) in “Numbers of…” to, for instance 10, make these changes: <asp:ListItem>5</asp:ListItem><asp:ListItem Selected="True">10</asp:ListItem> …and to add another digit <asp:ListItem>25</asp:ListItem> <asp:ListItem>35</asp:ListItem> <asp:ListItem>50</asp:ListItem> ● If you want to add an item or a method, in this case “chatAttribute” and Chat, to the “Send via” drop down list, just add the tags below: Send via:<asp:DropDownList ID="dlSendAttrib" runat="server" style="margin-left: 108px; margintop: 6px;"> <asp:ListItem Value="mobile">SMS</asp:ListItem> <asp:ListItem Value="mail">e-Mail</asp:ListItem> <asp:ListItem Value="chatAttribute">Chat</asp:ListItem> </asp:DropDownList> Configuration for Centralized Administration Page The CentralizedAdmin.aspx works as the SelfService.aspx except from some differences. These are: ● The account which generates the prefetch passwords has to be an "OTP prefetch administrator" ● The Help Desk may want to receive the generated OTP's instead of the user receiving the OTP's ● How to configure an "OTP prefetch administrator" in the OTP Server, see NSD1183 ● How to configure the OTP Server to send an e-mail containing prefetched OTP's to a static "OTP prefetch receiver", see NSD1184 Figure: The CentralizedAdmin.aspx Page Revision History Version/Date 14th december 2011 Note ● Updated with IIS 7.5 settings (Add ASP.NET support) ● Print screen of Prefetch OTP code ● Changed test-steps to use Internet Explorer instead of IIS Managers build in Browser Version 1.6.1 Installation guide now describes adding the 11th januari 2011 application to an existing IIS web site (instead of creating a new IIS web site) Version 1.6 ● Added Default.aspx 30th December 2010 ● Added language support ● Renamed Login.aspx to SelfService.aspx ● Renamed LoginAdmin.aspx to CentralizedAdmin.aspx 1st June 2009 Initial document One Time Password Server Configuration Now, you have to add your IIS Web Server as a client in your One Time Password Server configuration. How to add a client is described in the One Time Password Server 3.0 – Administrators Manual in section 13 Client Configuration.