Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Install ADSS Server using SQL Server authentication.
  2. Click here to download a patch that is required to run ADSS Server and SigningHub Core without storing username and password over windows authentication.
  3. Unzip the patch and overwrite its content on [SigningHub-Home].
  4. Now go to [SigningHub-Home]/tools/adss-server/conf directory.
  5. Open the hibernate.cfg.xml in edit mode and change the values of these elements as shown below:

    • For Kerberos Authentication

      Code Block
      titlehibernate.cfg.xml
      languagexml
      <property name="hibernate.connection.url">jdbc:sqlserver://localhost:1433;databaseName=ADSS-Server-DB;integratedSecurity=true;authenticationScheme=JavaKerberos</property>
      <property name="hibernate.connection.username"></property>
    • For Windows Native Authentication:

      Code Block
      titlehibernate.cfg.xml
      languagexml
      <property name="hibernate.connection.url">jdbc:sqlserver://<DATABASE_MACHINE>:1433;databaseName=<DATABASE_NAME>;integratedSecurity=true</property>
      <property name="hibernate.connection.username"></property>
  6. Now go to [SigningHub-Home]/core/conf directory.
  7. Open the hibernate.cfg.xml in edit mode and change the values of these elements as shown below:

    Code Block
    titlehibernate.cfg.xml
    languagexml
    <property name="hibernate.connection.driver_class">com.microsoft.sqlserver.jdbc.SQLServerDriver</property>
    <property name="hibernate.connection.url">jdbc:sqlserver://localhost:1433;databaseName=SH-DB;integratedSecurity=true</property>
    <property name="hibernate.connection.username">db-user</property>
    <property name="hibernate.connection.password">password</property>
    <property name="hibernate.hbm2ddl.auto">none</property>
    Note

    Do not comment or delete the username and password properties from the file - use these values as a dummy username and password otherwise ADSS Server and/or SigningHub will fail to start.

  8. Follow this KB article to register all the instances of ADSS Server/SigningHub Core under domain user account: 
    HowtoregisteralltheinstancesofADSSServer/SigningHubCoreunderdomainuseraccount?

...