Update the Configuration File

After you have installed the website, activated the license and established a database, the next step is to update the configuration file on the web server.

From Start, search for “XFRACAS2022 Admin” and open the admin utility. Then click Update XFRACAS Configuration File.

1 - On the Connection Tab:

• Connection Info - Enter the required details for the database that the application will connect to. If you used the admin utility to create the database, the connection information will appear in the fields automatically. If the default connection string doesn’t work for your implementation (e.g., you want to deploy XFRACAS on Azure, use SQL Authentication, etc.) you can enter a custom connection string.

Select Encrypt Connection String if you want to hide the connection string information within the web configuration file.

• Application Service Account - Enter the credentials for the service account that XFRACAS will run as on the web server (for IIS, accessing files on the server, the DIU service, etc.). If the ReliaSoft database is on SQL Server, this account will also be used to connect to the database. (See Establish a Service Account for the Application.)

Select Encrypt Impersonation Identity if you want to hide the credentials within the web configuration file.

Note: If you choose to use encryption, the Authentication feature in IIS Manager will be unable to read the resulting web.config file. You may see an error such as “Error: Configuration section encryption is not supported.” If you need to use this feature in IIS Manager, you can temporarily remove the encryption.

2 - On the Settings Tab:

• Command timeout sets how long the application should wait for a command to finish. Typically, this will not need to be changed, but if you have custom SQL queries that run longer than the standard 120 seconds, you can increase this value.
• Request timeout sets how long IIS waits for a request to the application to finish processing. Typically, this will not need to be changed, but if you are importing large XML files into the system and they time out during import, you can extend this to a larger value.
• Web Service Maximum File Size sets the maximum size for files inserted into the import queue by the XFRACAS web service. This is set during installation to 10485760 bytes (or ~10 MB).
• Upload Maximum File Size sets the maximum file size that can be uploaded to the server. This is set during installation to 10485760 bytes (or ~10 MB).
• Enable Temporal Tables applies to SQL Server implementations (version 2016 and later) and is required if you plan to log user access to records. See Configure History Logging to learn more about this feature.
• Content-Security-Policy Header determines which types of dynamic resources are allowed to load on the site. This policy is required to detect and prevent cross-site scripting (XSS) and other code-injection attacks. Typically, it will not need to be changed; however, if you decide to modify this policy, you must include the following directives to ensure that the site functions properly:
  • ‘unsafe-inline’
  • ‘unsafe-eval’
• For a SQL Server implementation,
  1. Select Encrypt communication to encrypt the connection between the application and the database.
  2. Select Trust server certificate if the server has a self-signed certificate.

Note: To encrypt the connection for an Oracle implementation, set the encryption type to either “requested” or “required” for the Oracle database. To learn more, consult the Oracle documentation (e.g., https://docs.oracle.com/cd/B19306_01/network.102/b14268/asoconfg.htm#i1007808).