Configuring for Microsoft's IIS version 4 Server

Installation for Microsoft IIS 4.x with Microsoft Management Console

Please go through each instruction, step by step, to make sure that everything is set up correctly.

First of all, create an NT user for the merchant that you are installing the store for. This user should be the same name as the store ID of the store that you are installing. More Info
Set the permissions on the Data, Output, and Back Office directories so that merchant user that you just set up (with the same name as the store ID) has Change access to those directories (and their contents and sub-directories). More Info
Configure the shopping cart so that IIS recognizes it as a URL from which CGIs can execute. More Info
Configure the back office so that IIS recognizes it as a protected URL from which CGIs can execute. More Info
Configure logging to conform to NCSA format. More Info

A. If you have already created the NT user to be used by the merchant skip to section B. The merchant's NT user account MUST have the same name as the ShopSite store ID specified in the store.auth file. To create the user:

1. From the task bar select Start, select Programs, select Administrative Tools select User Manager for Domains.
2. Select User then Select New User
3. Enter the username, description, and password, then click Add, then Close.
4. Select Policies, Select User Rights.
5. From the pull-down Right menu select Logon Locally, click Add, then click Show Users now select the user you just added.
6. Now click Add, then OK, then click OK one more time.
B. Configure NT so that the ShopSite merchant and the customers (anonymous logon) can access the shopping cart, data, and output (html) directories.

1. Set the correct permissions for the shopping cart directory.

a) From the task bar select Start, select Programs, select Windows NT Explorer.
b) Browse to the shopping cart directory or create it (e.g. c:\InetPub\scripts\sb)
c) Select (highlight) the directory name then right-click your mouse
d) Select the Properties option
e) Select the Security Tab then click the permissions button.
f) Press the add button, click the show users button.
g) Select the user (store ID) you created in section A above, click the down arrow on the Type of Access box, select Full Control, then click OK.
h) Also give the customer (anonymous logon) at a minimum read access (if it does not already have it.)
i) Press OK twice more to return to Windows NT Explorer.

2. Set the correct permissions for the output directory by repeating step 1 above.
3. Repeat step1 above with one variation to correctly set up the permissions on data directory. Because orders are stored in the data directory the anonymous user needs to have at a minimum the Change permission on the directory (step h). Since the data directory is not aliased by the Web server and is not located under the document root (InetPub) anonymous users cannot browse to the directory and compromise security.
C. Configure IIS to recognize the shopping cart directory and allow CGIs to be executed from it.

1) From the task bar select Start, select Programs, select Microsoft Internet Server, select Internet Service Manager.
2) Select the Default Web Site for your system.
3) Right Click on the stores' directory (e.g. /NtStore)
4) Select New and then Virtual Directory
5) Enter URL Alias (e.g. sb)
6) Browse to the shopping cart directory then click OK.
7) In the Access box ensure that Read and Execute are checked.
8) Then click OK, then click OK again.

D. Configure IIS to recognize your back office URL (the URL you will run ShopSite from) as a protected URL.
1. Configure IIS to recognize the back office directory.

a) From the task bar select Start, select Programs, select Microsoft Internet Service Manager, select Internet Service Manager.
b) Select the Website for this store.
c) Select the html directory for this store and right click on it.
d) Select Add then Virtual Directory.
e) Enter the URL alias (e.g. bo) and click next.
f) Enter the exact path for the Back Office directory (e.g. c:\inetpub\scripts\bo) and click next.
g) In the Access box ensure that Read, Execute and Script are checked.
h) Then click finish, then click OK again.
2. The directory must be password protected for Web access.

a) From the task bar select Start, select Programs, select MicroSoft Internet Information Server, and then Internet Service Manager.
b) Select the Website for this store.
c) Select the directory alias name then right-click your mouse.
d) Select properties then select the Directory Security tab.
e) Select Edit for the Anonymous Access and Authentication Control.
f) Select the Basic Authentication and De-select the Allow Anonymous Access and also NT Challenge and Response.
g) Press OK twice more to return to Windows NT Explorer.

E. To view the Web Server statistics (hits, pages viewed, etc.) from the back office, the log format needs to conform to the NCSA format. To set the logging format:

1. From the task bar select Start, select Programs, select Microsoft Internet Server, select Internet Service Manager.
2. Right click on the stores Website, enable logging and make sure that NCSA format is selected.
3. Press OK.

Note: In the ShopSite back office you will configure where ShopSite is to read the logfile from. Because IIS can rotate the log files Daily, weekly or monthly ShopSite will need to be reconfigured to read the new log file (e.g. NCyymmww.log) when it is rotated. One solution is before the file is rotated to have a program copy (append) the file to a known name that ShopSite reads.

Back to Main Help Page | Search | Give Feedback
If you are not finding the help you need, please give detailed feedback.