IIS Configuration

A description of the Microsoft Internet Information Services configuration needed for the installation of Sysgem Self-Service Password Reset

IIS Admin Routines

Recent versions of Microsoft Internet Information Services (IIS) do not, by default, expose the administrative routines that the Sysgem Self-Service Password Reset installer uses to configure the Web Site.

The IIS administrative routines need to be enabled before launching the Sysgem installation.

Enable the routines by using the Windows 'Add Features' option (in the Control Panel or the Server Manager). They are listed as 'IIS 6 Management Tools' with several suboptions including 'Metabase Compatibility'. Once these are installed the setup routine of the Sysgem Self-Service Password Reset installer should be able to create the web pages.

Permissions on Files and the Account Used for Annoymous Access

There are two files to which the Self Service Password reset setup program adds permissions:

* C:\Program Files\Sysgem AG\Password Reset\Web\license.txt
* C:\Program Files\Sysgem AG\Password Reset\Database\SEMPwdResetSvr.txt

(* Where C:\Program Files\Sysgem AG\Password Reset can vary based on 64/32-bit and international versions of Windows, or a custom directory can be specified during installation.)

The IUSR account needs write access to these files. Without that permission, the license will not be created correctly and an error message will be displayed.

Check the account that is used for Annonymous Access by using the IIS Management Tool (from the Control Panel, Administrator Tools)

1) Drill down to the PwdReset directory (typically SERVERNAME -> Sites-> Default Web Site -> pwdreset)

2) Open the Authentication category (or "Directory Security" on the pwdreset Property Page)

3) Right-click Anonymous Authentication and select Edit

4) The resulting dialog box should indicate the user account that's being used to write to Password Reset's license and Q&A list.