Produced by Araxis Merge on 10/26/2017 10:43:41 PM Eastern Daylight Time. See www.araxis.com for information about Merge. This report uses XHTML and CSS2, and is best viewed with a modern standards-compliant browser. For optimum results when printing this report, use landscape orientation and enable printing of background images and colours in your browser.
| # | Location | File | Last Modified |
|---|---|---|---|
| 1 | OSCIF_BMS_v2_iter 2_September_2017.zip\BMS_Cand\COTS\Binaries | InFlowSTSUserNameAuth.docx | Wed Oct 18 18:44:44 2017 UTC |
| 2 | OSCIF_BMS_v2_iter 2_September_2017.zip\BMS_Cand\COTS\Binaries | InFlowSTSUserNameAuth.docx | Thu Oct 26 19:04:16 2017 UTC |
| Description | Between Files 1 and 2 |
|
|---|---|---|
| Text Blocks | Lines | |
| Unchanged | 1 | 90 |
| Changed | 0 | 0 |
| Inserted | 0 | 0 |
| Removed | 0 | 0 |
| Whitespace | |
|---|---|
| Character case | Differences in character case are significant |
| Line endings | Differences in line endings (CR and LF characters) are ignored |
| CR/LF characters | Not shown in the comparison detail |
No regular expressions were active.
| 1 | In order t o apply th e changes there are few steps that shoul d be follo wed: | |
| 2 | ||
| 3 | 1. C opy the ne w Security TokenServi ce.dll in the associ ated folde r (which i s the STS subfolder of the Ser vices fold er) | |
| 4 | ||
| 5 | ||
| 6 | 2. C hange the SecureToke nService.d ll.config file (whic h is in th e same fol der as the associate d dll file mentioned above). | |
| 7 | ||
| 8 | The change s needed t o be made are these: | |
| 9 | ||
| 10 | The | |
| 11 | ||
| 12 | <behav iors> | |
| 13 | <ser viceBehavi ors> | |
| 14 | <b ehavior na me="Servic eSTSBehavi or"> | |
| 15 | ||
| 16 | section sh ould look like this: | |
| 17 | ||
| 18 | <b ehavior na me="Servic eSTSBehavi or"> | |
| 19 | <s erviceDebu g includeE xceptionDe tailInFaul ts="true" /> | |
| 20 | <s erviceMeta data httpG etEnabled= "true" htt pGetUrl="h ttp://loca lhost:2205 0/STS/mex" /> | |
| 21 | <s erviceCred entials> | |
| 22 | <servi ceCertific ate findVa lue="IWHM3 STS" store Location=" LocalMachi ne" storeN ame="My" x 509FindTyp e="FindByS ubjectName " /> | |
| 23 | <userN ameAuthent ication us erNamePass wordValida tionMode=" Custom" cu stomUserNa mePassword ValidatorT ype="InfoW orld.Secur ity.Authen tication.U serNameVal idator,Sec ureTokenSe rvice"/> | |
| 24 | </ serviceCre dentials> | |
| 25 | <s erviceAuth orization principalP ermissionM ode="Custo m"> | |
| 26 | <authoriza tionPolici es> | |
| 27 | <add p olicyType= "InfoWorld .Security. Authentica tion.Autho rizationPo licy,Secur eTokenServ ice"/> | |
| 28 | </authoriz ationPolic ies> | |
| 29 | </ serviceAut horization > | |
| 30 | <serviceTh rottling m axConcurre ntCalls="1 000" maxCo ncurrentSe ssions="10 00" /> | |
| 31 | </ behavior> | |
| 32 | ||
| 33 | Note: the highlighte d lines ar e supposed to be add ed in the existing b ehavior’ s attribut es. | |
| 34 | ||
| 35 | 3. T here is an additiona l step tha t has to b e performe d before t he changed services are restar ted. This is a conte xt depende nt step; i t is requi red only i f the runn ing platfo rm has the se charact eristics: | |
| 36 | a. T he machine that runs the BMS s ervices ha s Windows 2008 R2 Se rver (or W indows 7 o r less) | |
| 37 | b. T he machine that mana ges the Ac tive Direc tory has W indows 201 2 Server | |
| 38 | ||
| 39 | If the abo ve conditi ons are bo th true (i f both mac hines have 2012 serv er, or if both have 2008 R2 se rver this step shoul d be omitt ed), then a Microsof t Hotfix n eeds to be installed on the ma chine that runs the BMS servic es: | |
| 40 | ||
| 41 | https://su pport.micr osoft.com/ en-us/kb/3 060716 | |
| 42 | ||
| 43 | This Hotfi x may not install sm ooth using the norma l install procedure; in that c ase, a man ual set of operation s need to be perform ed, as des cribed in the follow ing articl e (do not worry abou t the fact that the article is about oth er hotfixe s, the pro cedure to be followe d is the s ame): | |
| 44 | ||
| 45 | http://sys temsinside .blogspot. ro/2016/03 /hotfix-kb 2830145-ca nt-be-inst alled-sid. html |
Araxis Merge (but not the data content of this report) is Copyright © 1993-2016 Araxis Ltd (www.araxis.com). All rights reserved.