INSTRUCTIONS FOR USING AUTOCONFIGURE FEATURE

Section 1: IIS Mapping configuration:

1. In order for Web-Directory security Auto-Configure feature to work, the XBoost Control/Satellite’s virtual directory anonymous access account should have administrative privileges. To check for these rights, please follow these instructions:

1. Go to Internet Information Services

2. Right-click on your XBoost control virtual directory.

3. Select the "Directory Security" tab.

4. In the section for "Anonymous access", check the account set for anonymous access. Please make sure that this account has administrative privileges. If you don’t want to give administrative privileges for anonymous access, please follow the manual configuration instructions to enable directory security.

Section 2: web.config configuration:

1. Auto-configure feature modifies the web.config to add appropriate HttpHandlers according to the file extensions needed to be secured. Before using Auto-Configure feature please make sure that you have write-privileges on the web.config file and the file is not under source-control (checked-in) or set as read-only.

INSTRUCTIONS FOR MANUALLY CONFIGURING DIRECTORY SECURITY

Section 1: Manual IIS configuration:

1. Go to Internet Information Services

2. Right-click on your virtual directory for which you want to want to add web directory security (XBoost Control or XBoost Satellite)

3. Click on the "Configuration" button in the Application Settings section

4. Check whether the required file extension in the "Application Mappings" section already exists. If that is the case, then the extension should have "Executable Path" set to the aspnet_isapi.dll. Please change the path by selecting the extension and clicking "Edit" button. Then point the path to the aspnet_isapi.dll. The DLL can be typically found at "C:\Windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll" for Windows XP

In case a given extension does not exist in the application mappings, Add a new one as follows:

1. Click on the "Add" button in the "Mappings" tab

2. In the Add/Edit Application Extension Mapping window, click browse for the executable. Point the executable to the aspnet_isapi.dll. The DLL can be typically found at "C:\Windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll" for Windows XP. Select the DLL.

3. In the extension text-box type in the extension required. For example if you want request for all "PDF" files be handled by XBoost, type in ".pdf"(don't forget the dot (.) before the file extension).

4. Un-check the "check that file exists" check-box.

5. Click OK and Save.

Section 2: Manual web.config configuration:

1. Open the web.config for your XBoost control or your satellite web application ("C:\Ivis Technologies\XBoost\XBcontrol\web.config")

2. Check for the <httpHandlers> node under <system.web> node.

3. If <httpHandlers> node exists then skip step 4

4. If <httpHandlers> node does not exist in the web.config, then add the following node under the <system.web> node.

</httpHandlers>

5. Under the <httpHandlers> node add the following lines

Example: To secure PDF files in "myFolder" for virtual directory "myXBoost":

6. Add more <add> sections under the <httpHandlers> node for all the extensions you need to secure. Note each extension added applies to all file with that extension existing in myFolder only.

7. Save the web.config file