If the asymmetric token type is selected, the OnBase Entrust Properties for public key hashes dialog is displayed:
-
Double click the white field under Public Key Hash and paste (press Ctrl-V) the public key hash copied from the OnBase Entrust Configuration dialog.
Note:
If you have overwritten the public key hash value in your clipboard, simply launch the OnBase Entrust Configuration utility again and open the LOB *.config file, then recopy the PublicKeyHash value. See, Configuring the Line-of-Business Application.
- Click OK. The Public Key Hash is saved and the OnBase Entrust Properties dialog is closed.
-
Enter an ASP.NET Identity in the corresponding Web Server Config field.
Specify the ASP.NET user that the authentication server impersonates. This is the user that the service runs under. If the application is not impersonating, specify ASPNET as the user.
CAUTION:It is highly recommended that the consuming application run under its own identity. By doing so, the private key is protected and other ASP.NET applications on the server are not able to use the same private key to send unauthorized messages to the web service.
- Click Configure. A public key is generated and displayed in the Public Key Token field.
-
Copy the Public Key Token to the Windows clipboard by right-clicking the Public Key Token value and selecting Copy. This value is required to complete the application server configuration.
If the application server is on a different machine from the web server, you must save this value to a text file accessible from the application server.
- Immediately continue with configuring the OnBase application server.