Server Configuration and Permissions

Print Friendly and PDF Follow

In addition to having the Microsoft .NET Framework installed on your web server, you will need to ensure that IIS is properly set up to use the .NET Framework. You will need to install IIS roles and ensure that the Role for IIS Metabase Compatibility for the web server is installed. 

If you are using the Patron Request Service to receive requests from OCLC Navigator, you will also need to have .NET 2.0 Framework installed for that service. The two versions work fine in parallel on a web server.

Internet Information Services (IIS) Setup

  1. Go to Start - Administrative Tools - Server Manager.
  2. In the Roles and Features section, click Tasks and then Add Roles and Features.
  3. In the Select Server Roles section, check the box next to Web Server (IIS).
  4. Expand Web Server (IIS) and check the following boxes: 

If you get popups to add additional features in this process, click ok to add the features.

    • Web Server (IIS)
      • Web Server
        • Common HTTP Features
          • Default Document
          • HTTP Errors
          • Static Content
        • Application Development
          • .NET Extensibility 4.6
          • ASP.NET 4.6
          • ISAPI Extensions
          • ISAPI Filters
      • Management Tools
        • IIS 6 Management Compatibility
        • IIS 6 Metabase Compatibility
                                                                                                                                                               

 

Web User Permissions

In order for several Ares functions to work properly, you must have an SSL certificate installed on your Ares server. Additionally, permissions must be set for certain groups on your server.

SSL Certificate

You need to install an SSL Certificate on your Ares server in Microsoft Internet Information Services (IIS) so that all communications between the patron's web browser and your Ares Server are encrypted. Using the certificate, the username, password, ID number, etc., will be encrypted before being sent.

Group Permissions

To give the proper permissions for Ares web users, the following requirements must be set. These are the default permissions set up on servers running IIS 7 and above and are the default values for new Ares installations.

Users Group

The Users group should have permissions to Read, Read&Execute, List folder contents, and special permissions “Create files/write data’ and “Create folders/append data” for the following locations:

  • The Ares directory (C:\ares by default).
  • The location of the .dbc file. This is typically covered by the fact that the root of the system drive (C:\) has these permissions for the Users group by default.

IIS_IUSRS Group

The IIS_IUSRS group automatically includes any identity that an app pool is running under, so it should cover any of the Ares web applications. The IIS_IUSRS group should have permissions to Read, Read&Execute, and List folder contents to the following locations:

  • C:\inetpub\wwwroot\ares. This is typically covered by the fact that c:\inetpub\wwwroot includes these permissions for IIS_IUSRS by default.
  • C:\ares\webplatform\ folder.
  • The pdf folder (set by the customization key AresDocsPath). 

If you are having problems with permissions not being included on the Ares webplatform folder, you can use the following ICALCS command:

icacls C:\ares\webplatform /grant IIS_IUSRS:(OI)(CI)RX

Questions?

If this article didn’t resolve your issue, please contact Atlas Support for assistance:

Contact Support