Admin Portal Web configuration

  1. Open the File Explorer and go to C:\Program Files\Pointsharp\AdminPortal

  2. Locate the web.config file and open it in Notepad (must be as an admin).

The Admin Portal is using the Pointsharp ID Web Services which requires some keys to be properly set in the Admin Portal Web.config file.

These keys can be edited using your IIS manager’s Application Settings.

Settings for PointsharpFormLogin

Key name Value Description

FORM_AUTH_METHOD

Windows Password

The authentication method to use when authenticating with the Pointsharp ID.

FORM_TYPE

1

0 = Login with Username

1 = Login with Username and Password

WEB_SERVICE_URL

http://localhost/

WEB_SERVICE_VERSION

-1

The version of the Pointsharp ID Web Services to use.

0 = use old web services

1 or higher = use specific version of web services

-1 = use the latest version

SIGN_OUT_ENABLED

true

Set to true to enable sign out from the User Portal. This feature will only work for Forms login.

SIGN_OUT_TO_ROOT

true

Forms login will require this value to be true.

true: A sign-out should result in going back to root (/Home/Index)

false: Sign-out to a “you are signed out” page. The page will try to close itself, but due to not all browsers supporting the browser tab self-termination, it will not always take effect.

Forms login should use true, to avoid an inconvenient loop. Using forms login will disallow the last view by default and ask for credentials.

PS_SHARED_KEY

The Shared key (password) to be used for decrypting Pointsharp SSO Ticket from Pointsharp Access Gateway.

If Forms Authentication is configured "Do not use cookie", proxy via Pointsharp Access Gateway will fail.

PS_IV

The initialization vector (IV) to be used for decrypting Pointsharp SSO Ticket. If Empty default IV is used, length must be 16 chars.

Pointsharp ID Web application config and debug

Key name Value Description

PSID_LOG_FILE

../logs/adminportal.log

The log file for this application. Relative the Pointsharp ID bin folder. Nice to have whenever something is not working.

PSID_BINARY_FOLDER

C:\Program Files\PointSharp\PointSharp ID\bin

Set to the installation bin folder for the Pointsharp ID.

PSID_DEBUG

true

Set to true for debug level in the logging for this application. Nice to have whenever something is not working.

USE-PS-XSRF

false

Decides whether the anti-XSRF filter should be used or not.

PS-XSRF-TOKEN-EXPIRATION

1200000

Decides the time in milliseconds that the XSRF token is valid.

Modify the cookie expiration and refresh interval by adding their time frame in milliseconds separated with comma (,) after the validity time e.g. 1200000,1080000,960000 (20, 18, 16 min).

PS-APP-ID

AP

The unique short identifier of the current application. It is used to separate cookies and headers from other applications.

PS_DISABLE_DEVICE_SUMMARY"

false

Certificate Enrollment

Key name Value Description

SECURITY_KEY_CERT_KEY_ID

0x9a

PIV authentication.

SECURITY_KEY_CERT_KEY_TYPE

rsa

RSA Key

SECURITY_KEY_CERT_KEY_PARAM

0x800

2048-bit key (size)

SECURITY_KEY_CERT_KEY_USAGE

0xa0

Digital Signature, Key Encipherment (a0)

SECURITY_KEY_CERT_SUBJECT

CN=Pointsharp

Certificate subject

SECURITY_KEY_CERT_ALGORITHM

OID 1.2.840.113549.1.1.11

sha256WithRSA Encryption

SECURITY_KEY_CERT_DEFAULT_PIN

<123456>

A six-digit PIN is set by default.

It is strongly recommended that this pre-set PIN is changed to a new default PIN during installation. Manually add the key and value to web.config.