Documentation forAccess Rights Manager

Configure the web components

ARM Web components are pre-configured during an evaluation installation with default values.

For a production installation, you can install ARM Web components on a separate server, which is not recommended. With the ARM web configurator, you can set the web server name, port number, and certificate bindings.

  1. Click the Start menu and select the Access Rights Manager - Web Configuration application.

    After you install a Production deployment with enabled Web components, the Web Configuration application starts automatically.

  2. In the Web Configuration screen, configure the ARM Web Components Settings.

    1. In the Server Name field, enter the name of the ARM server. If you are running Web Components and the ARM server on the same computer, you can use localhost.

    2. In the Port field, enter the communications port number of the ARM server. By default, the ARM server communicates through port 55555.

  3. In the Web Configuration screen, configure the Internet Information Services (IIS) settings.

    1. In the Port field, enter a port number to bind the certificate to the website. The standard HTTPS port number is 443. If you enter any other port number, you must consider this when starting the ARM website, as you must provide the URL to your users.

    2. In the Certificate field, select a certificate.

      If a certificate is not available, you can generate a self-signed certificate.

    3. Click Refresh to reload the list of available certificates.

When the Application Pool and Web Site settings are operational, the Web components are available.

(Optional) Generate a self-signed certificate

The self-signed certificates described in this section generate security warnings in some Web browsers because they are based on an out-of-date SHA-1 based encryption method. For a Production deployment, use certificates with SHA2 / 256 encryption.

  1. Start the IIS Manager.

  2. Select the server, and then double-click Server Certificates.

  3. Generate the certificate.

    1. In the Actions menu, click Create Self-Signed Certificate.

    2. In the Specify Friendly Name window, enter a name for the certificate.

    3. Click OK to generate the certificate.

The next step is to bind the certificate to the website.

Bind a certificate to a site

You can add a certificate to the site during the provisioning process. It may be necessary to add another certificate—for example, when the old certificate has expired.

  1. Start the IIS Manager.

  2. In the Internet Information Service (IIS) Manager window, perform the following steps:

    1. Navigate to the ARM WebAPI site.

    2. In the Actions menu, click Bindings.

    3. Select the certificate with type "https" and port "443" (standard settings).

    4. Click Edit.

  3. In the Edit Site Binding window, select a certificate.

  4. Click OK to bind the certificate to the site.