Passwordstate Installation Explained
Click Studios provides a Windows Installer for Passwordstate, so your don't have to manually specify web site settings/permissions manually, which can be quite onerous. The following occurs on your web server during an installation of Passwordstate.
Pre-requisite Checks and Installs:
Passwordstate will check for the following pre-requisites on your web server, and if they don't exist it will install them
- Microsoft .Net Framework 4.5 (either x86 or x64)
- Internet Information Services (IIS) and required IIS Roles
Files Installed and NTFS Permissions:
- All required files will be installed to the default path of 'c:\inetpub\passwordstate', unless you change the path during the install
- Modify rights will be applied to the Passwordstate folder and all nested files/folders, for the “NETWORK SERVICE” & "IIS_IUSRS" accounts
Web Site Created:
A web site called 'passwordstate' is created, as well as three IIS Application Pools called 'Passwordstate', 'PasswordstateApps' and 'PasswordstateWinAPI'. The only possible differences with the configuration of the web site is:
- 'Authentication' settings will be different based on whether you chose AD Integrated or Local Account Authentication for Passwordstate. AD Integrated means you will authenticate with your Active Directory account. Local Account authentication means you will authenticate with a separate login and password. In both cased, 'Anonymous Authentication' will be enabled for the site in IIS
- The 'Binding' for the web site may be different, depending on what you selected during the setup
- The Port Number of the web site runs on is also set based on the settings you chose during the setup
-
A self-signed SSL certificate is created and assigned to the Passwordstate web site
Passwordstate Windows Service:
A Windows Service called 'Passwordstate Service' will also be installed, which performs the following functions:
- Sending of emails
- Synchronizing membership of Active Directory Security Groups
- Automatically removing access to passwords based on Time-Based Access feature
- Automatically adding permissions to passwords based on the 'Request Access to Passwords' feature
- Automatically removing or disabling User Accounts based on Time-Based Access feature
- Sending Scheduled Reports
- Synchronizing images and auditing data for the High Availability module
- Sending Auditing data to Syslog servers
- Performing Password Resets
- Performing account discovery on your network
- Performing Password Validations
- Performing automatic backups