This section tells you how to copy required files and configuring the FIPS-supported redirector plug-in for IIS. It assumes you have already installed and configured the plug-in for non-FIPS use and updated this installation by following the instructions described in “Adding FIPS and TLS support to the Web server redirector plug-ins”.
You must have selected the “IIS Plugin” option
during the EAServer 5.0 or 5.1 installation for the required files
to be extracted. You can restart the installation program and add
this option if needed.
Installing and configuring the IIS redirector
plug-in
Your EAServer installation includes files that implement the IIS Web server plug-in; you must copy these files to the IIS host machine.
When you installed the plug-in, you should have created a location on the Web server host for the plug-in files, for example:
<plugin_location> c:\winnt\system32\inetsrv\iisplugin
<dll_location> plugin_location\dll
You should have copied the following DLLs from your c:\Program Files\Sybase\EAServer\dll subdirectory into the dll_location directory:
libjcc.dll
libjctssecct.dll
libjeas_iis.dll
libjintl.dll
libjutils.dll
libjmtl.dll
nlwnsck64.dll
nlwnsck.dll
libjsybscl.dll
To support FIPS and TLS, you must copy the following additional DLLs from the EAServer\dll subdirectory that was created when you ran the EAServer 5.2 installation program into the dll_location directory:
libjeas_iis_f140.dll
libjctssecct_f140.dll
libjsbgpks.dll
libsb.dll
defaultmem.dll
Modify the text file iis_redirector.cfg, which you created when you first installed the plug-in. iis_redirector.cfg is located in the plugin_location. Modify the following:
Connector.IIS.Extension_URI /sybase/libjeas_iis.dll
to:
Connector.IIS.Extension_URI /sybase/libjeas_iis_f140.dll
Install the IIS plug-in into IIS. Your EAServer installation now includes the libjeas_iis_f140.dll file that implements the FIPS-supported IIS Web server plug-in:
Open the IIS Administrative Tool.
On Windows, select Control Panel | Administrative Tools | Internet Service Manager.
Alternately, you can select Control Panel | Administrative Tools | Computer Management | Services and Applications | Internet Information Services.
Configure the ISAPI filter:
Highlight the Web site where you want to install the plug-in, right-click, and select Properties.
On the ISAPI Filters tab, click Add, and install libjeas_iis_f140.dll as an ISAPI filter. Filters are invoked in the order listed, so if you install more than one filter, libjeas_iis_f140.dll should be first in the list.
Filter Name: Sybase Executable: C:\WINNT\system32\inetsrv\iisplugin\dll\libjeas_iis_f140.dll
Click OK.
Create and configure the virtual directory that corresponds to the location of the libjeas_iis_f140.dll directory:
Highlight the Web site where you installed libjeas_iis_f140.dll, right-click, and select New | Virtual Directory.
Specify the alias:
Alias: Sybase
Specify the directory:
Directory: C:\WINNT\system32\inetsrv\iisplugin\dll
Specify the permissions:
Enable read, run scripts, and execute permissions on the virtual directory.
Reboot the Web server machine for the environment changes to take effect.
Verify that the ISAPI filter is working correctly:
Highlight the Web site where you want to install the plug-in, right-click, and select Properties.
On the ISAPI Filters tab, verify that the status for the new filter (Sybase) is a green arrow pointing upward.
If you see the green arrow, click OK, and move to the next test.
If you do not see a green arrow, step through the instructions for the ISAPI filter again. Look for errors and other mismatches.
Verify that the Web redirector plug-in still works for your HTTP connections.
Enable FIPS for the redirector plug-in and establish HTTPS connections. See “Managing FIPS for the redirector plug-ins”
