Pre-Installation Instructions

Congratulations on your decision to purchase Permission Assist! Before installing, we recommend completing a few steps to ensure your installation goes as smoothly as possible.

 

Pre-Installation Step 1 - Review the Hardware and Software Requirements

Review the Hardware and Software Requirements to make sure your server(s) are set up and ready to go. Then, use the following checklist to make sure all T's are crossed and I's are dotted before you install:

 

Install IIS and ASP.NET on the application server.

Decide on an internal URL that will be used to access Permission Assist.

Examples:

  • reviews.yourawesome.bank

  • permissionassist.yourbank.local

  • pa-test.yourbank.com

Install the SSL certificate on the application server.

Set up a DNS for the Permission Assist site.

Install MS SQL Server on the database server.

Create either a service account (if you want to use integrated authentication) or a SQL authenticated account. This account is used to access the database and is required for Permission Assist to work properly. During the installation, we’ll set up this account as a “db_owner” of the database.

Create an Active Directory service account that has permission to read all user information. Most accounts will automatically be given this permission when the account is set up.

NOTE: If you are planning to use the incremental provision engine, this service account will also need permission to do the following:

  • Create, delete, and manage user accounts

  • Reset user passwords and force password change at next login

  • Modify the membership of a group

If a username and password is required to access your SMTP server, create a service account that Permission Assist can use to access SMTP for sending email alerts and notifications.

 

Pre-Installation Step 2 - Check the IIS Settings

The following instructions are for Windows Server 2019 or higher.

  1. On the Permission Assist application server, open Server Manager.

  2. Select Manage in the upper right corner and select Add Roles & Features.

  3. Select Next until you reach Server Roles.

  4. Select Web Server (IIS) > Web Server > Common HTTP Features.

  5. Make sure the following are selected (checked):

    • HTTP Errors

    • Static Content

  6. Select Health and Diagnostics and make sure the following is selected (checked):

    • HTTP Logging

  7. Select Performance and make sure the following is selected (checked):

    • Static Content Compression

  8. Select Application Development and make sure the following are selected (checked):

    • .NET Extensibility 4.7 (or higher)

    • ASP.NET 4.7 (or higher)

  9. Select Next to go to Features and make sure the following are selected (checked):

    • .NET Framework 4.7 (or higher)

    • ASP.NET 4.7 (or higher)

  10. If needed, select the Install button to install features as needed. When installations are complete, close Server Manager.

 

Pre-Installation Step 3 - Create the Permission Assist Database

  1. In SQL Server Management Studio, create a new database (see picture below). The New Database window appears.

  2. In the Database Name field, enter the name of your database (for example: PermissionAssist).

  3. Select OK to save the changes and close the window.

  4. Expand the Security folder (see picture below).

  5. Expand the Logins folder.

  6. Right-click on the user that Permission Assist will use to connect to the Permission Assist database, and select Properties.
    Tip: This account is either the service account or SQL authenticated account mentioned in the pre-installation checklist.

  7. Select User Mapping.

  8. Select the Permission Assist database.

  9. In the "Database role membership for: YourPermissionAssistDatabaseName" area, select db_owner and verify that Public is also selected (see picture below).

  10. Select OK to save the changes and close the window.

  11. Close SQL Server Management Studio.