Version: 2022.1.3

Getting Started

Requirements

Server

Windows Server 2012 R2*, Win10, Windows Server 2016 or higher
.NET 4.7.2
A working locally installed inPoint.Client (for the Environment Registry keys or inPoint.Config)
SSL Certificate
Two Free ports (do not use 443 if you already run IIS with it!)

Client

Browser:
- Chrome v91 or higher
- FireFox v90 or higher
- Safari v14 or higher
- Edge v91 or higher
- Opera v77 or higher
OS: Windows, OS X, iOS (iPhone and iPad) and Android

Note: You can update outdated Browers via updateoutdatedbrowser.com

External Access

If you are planning to access inPoint.Web from an external network (i,e. Internet), you need to:

have a valid Certificate from a known CA (otherwise the browsers will complain)
setup your firewall to allow access to both ports (identity and web)

License (.lic)

inPoint.Web has it's own "licensing module", as such an updated .lic file must be created (by Backoffice) and placed (manually) usually directly under c:\Program Files(x86)\HS Europe

If the license is invalid for any reason (expiration, network ip, module, etc...) you will see an "Invalid inPoint License" both on the server-side logs and on the Client directly in the About page (last entry in the Sidebar). It will for now not limit any functionality, but this will change in the future.

Installation

inPoint.Web.Server is basically the REST Service used by the inPoint.Web Client. It is in itself a client (just like inPoint.Client), that's why it requires a working locally installed inPoint.Client.

inPoint.Identity is used to (only) authenticate users (by supporting different Login Providers) using the standard OpenID Connect.

There are two separate install packages:

inPoint.Web.IdentityServer_xxx.msi
inPoint.Web.Server_xxx.msi

These are "self-hosted" Web Servers (based on Http.Sys) and do NOT require any IIS installation/Configuration. The installation will install everything under C:\Program Files\(x86)\HS Europe and install them as Services.
NOTE: you can either install them on the same machine or on two totally separate ones.

You MUST then manually edit C:\Program Files (x86)\H&S Heilig und Schubert Software AG\Pam.Storage\Web\web.config (or wherever it's located) and set pamSettings/identityAuthority to point to the Identity server.

Per default the installed Services will run under the "Network Account". You can manually change that to an existing inPoint User, then you must manually add this user to the Pam.Storage/web/web.config ImpersonationUsers setting.

NOTE: only Install/Remove are currently implemented, Change/Repair will do nothing – so if you need to change any settings simply first manually uninstall and then re-install with the new settings.

Installation in custom folder

Per default the Setups will install under:

C:\Program Files\(x86)\HS Europe\inPoint.Web.Server

and

C:\Program Files\(x86)\HS Europe\inPoint.Web.IdentityServer

If you wish to install under a different path you can specify those using standard MSI CLI parameters when executing the installer (this will still show the Installer GUI), e.g:

msiexec.exe /I inPoint.Web.IdentityServer_2018.4.3.003.msi installdir="D:\inPoint\inPoint.Web.IdentityServer"

msiexec.exe /I inPoint.Web.Server_2018.4.3.001.msi installdir="D:\inPoint\inPoint.Web.Server"

NOTE: you must specify the full target folder in the installdir parameter!

inPoint.Web.IdentityServer

Select your Certificate,
Enter the full qualified hostname (as also specified in the Certificate),
Choose the default Web port (usually 443 for https but usually locked by IIS),
Choose the default IdentityServer port (users will not usually access this directly)

After the installation you should have a running inPoint.Web.IdentityServer Windows Service, and if configured correctly it should be accessible at https://<host>:<IdentityPort>

inPoint.Web.Server

Select your Certificate,
Enter the full qualified hostname (as also specified in the Certificate),
Choose the default Web port (usually 443 for https but usually locked by IIS),
Choose the default IdentityServer port (users will not usually access this directly)

After the installation you should have a running inPoint.Web.Server Windows Service, and if configured correctly it should be accessible at https://<host>:<WebPort>

Registry

All values entered in the setup (except for the password) are persisted in the Registry under:

HKLM\Software\HS Europe\inPoint.Web

Those values are used ONLY by the Setup(s).

Silent Installation

Silent installation (without any GUI intervention) is also possible by either providing all required parameters in the command line or by providing an "install.json" file with the parameters pre-filled.

CLI parameters

SETTING_USER: full qualified username (optional)

SETTING_PWD: password (optional)

SETTING_CERT: certificate's thumbprint

SETTING_WEB_PORT: port number to run Web server

SETTING_IDENTITY_PORT: port number to run Identity Web server

install.json

CONFIG: full filename (including path) to install.json

Here a sample install.json:

{
  "target": "C:\\Program Files (x86)\\HS Europe",
  "cert": "29B94FC22EAA2E04B66856A7FF9482739EC93C28",
  "protocol": "https://",
  "host": "inpointserver.com",
  "identity_port": "5443",
  "web_port": "5000"
}

Requirements​

Server​

Client​

External Access​

License (.lic)​

Installation​

Installation in custom folder​

inPoint.Web.IdentityServer​

inPoint.Web.Server​

Registry​

Silent Installation​

CLI parameters​

SETTING_USER: full qualified username (optional)​

SETTING_PWD: password (optional)​

SETTING_CERT: certificate's thumbprint​

SETTING_WEB_PORT: port number to run Web server​

SETTING_IDENTITY_PORT: port number to run Identity Web server​

install.json​

CONFIG: full filename (including path) to install.json​