Appendix: Security Administration Sample Transforms.xml file

Below is a sample of the Transforms.xml file used in the Security Administration installation

Note: The example below cites specific machine names using the Machine.example.NET nomenclature.
<Transforms>
  <Transform FileName="Installs\EA\STSv3Installer.msi" Category="EA418">
    <Property Id="Global.EnvironmentName" Value="Continuous integration" />
    <Property Id="Global.IISPreInitialize" Value="1"/>
    <Property Id="Global.KeyRepositoryCertificateThumbprint" Value="0BD84B7070E66DFD9EA94D24E7CC7B6F2753DF50"/>
    
    <Property Id="STS.HostName" Value="labw6408hvm418.wkmnlab.net"/>
    <Property Id="STS.AppVirtualDirName" Value="STSv3"/>
    <Property Id="STSTestClient.AppVirtualDirName" Value="STSTestWebClient"/>

    <Property Id="STSAdmin.HostName" Value="labw6408hvm418.wkmnlab.net"/>
    <Property Id="STSAdmin.IsLegacyStyle" Value="true" />
    <Property Id="STSAdmin.QuickRegistration" Value="true"/>
    <Property Id="STSAdmin.UseCoreServicesToGenerateIds" Value="false" />
    <Property Id="STSAdmin.CoreServicesHost" Value="labw6408hvm418.wkmnlab.net"/>

    <Property Id="STS.STSAuthDbConnectionString" Value="Server=labw6408hvm418;;Integrated Security=true;;Database=STSAuth;;MultipleActiveResultSets=true"/>
    <Property Id="STS.STSConfigDbConnectionString" Value="Server=labw6408hvm418;;Integrated Security=true;;Database=STSConfiguration;;MultipleActiveResultSets=true"/>
    <Property Id="STS.STSCacheDbConnectionString" Value="Server=labw6408hvm418;;Integrated Security=true;;Database=AppSecurityTokenCache;;MultipleActiveResultSets=true"/>
    
    <Property Id="STS.SigningCertificateThumbprint" Value="2779B33709C859B45EEDDB3342DD30B9F40E82FE" />
    <Property Id="STS.RootCertificateThumbprint" Value="D073B38E0BA5F36008D8D6BB038F69A48D8E36D7" />

    <Property Id="STS.TokenSigningCertThumbprint" Value="c41d4115be5dd15dfad8db4d727bd1b09228de27" />
    <Property Id="STS.WsFedSigningCertificateThumbprint" Value="c41d4115be5dd15dfad8db4d727bd1b09228de27" />
    
    <Property Id="STSAdmin.ClientCertThumbprint" Value="988b03f2e9c92ee60a36304ea68c69c50e3e686c" />
    <Property Id="STSAdmin.IntrospectionSettingsClientSecret" Value="#{ClientParameters_ApiSecrets_STSApiSharedSecret_SecretPlainText}"/>
    <Property Id="STSAdmin.CavaEnabled" Value="false" />
    <Property Id="STSAdmin.CavaUrl" Value=" " />
    <Property Id="STSAdmin.CavaUsername" Value=" " />
    <Property Id="STSAdmin.CavaPassword" Value=" " />
  </Transform>
</Transforms>

Additional considerations

Consider additional guidelines when using the following elements:

  • Global.EnvironmentName
  • STS.HostName
  • STS.AppVirtualDirName; this should be set to "STS"
  • STSTestClient.AppVirtualDirName
  • STSAdmin.HostName; this should be set to "STSAdministration"
  • STSAdmin.IsLegacyStyle; this should be set to "false"
  • STSAdmin.QuickRegistration
  • STSAdmin.UseCoreServicesToGenerateIds; this should be set to "false
  • STSAdmin.CoreServicesHost
  • Global.IISPreInitialize
Note: The following connection strings should use "integratedSecurity=true:"
  • STS.STSAuthDbConnectionString
  • STS.STSConfigDbConnectionString
  • STS.STSCacheDbConnectionString

CAVA-related properties

Consult the CAVA (Virus scan)-related properties below for more information on setting values.

  • STSAdmin.CavaEnabled: if set to "true", virus scanning is enabled.
  • STSAdmin.CavaUrl: This URL is the REST service used for antivirus scanning.
  • STSAdmin.CavaUsername: the username of the service
  • STSAdmin.CavaPassword: the password of the service