IIS Windows Auth

Host Preparation

  1. Ensure the following IIS Features are installed on the host:

    Feature Display Name

    Feature Name

    Feature Path

    Installation Script

    WebSocket Protocol


    Web Server (IIS) / Web Server / Common HTTP Feature / Application Development

    Install-WindowsFeature Web-WebSockets

    Windows Authentication


    Web Server (IIS) / Web Server / Common HTTP Feature / Security

    Install-WindowsFeature Web-Windows-Auth

  2. Restart the Host (IIS Requirement)

  3. Install PowerShell Universal

  4. Stop and Disable the PowerShell Universal Windows Service

  5. Ensure "AspNetCoreModuleV2" is listed as a Module on your IIS server instance.

IIS Configuration

  1. Create a New Application Pool:

    • .NET CLR Version: No managed code

    • Identity: Use a Service account with full permissions to the application files C:\Program Files (x86)\Universal and the database files: C:\ProgramData\UniversalAutomation

    • Advanced Settings / Process Model / LoadUser Profile: True

    • Advanced Settings / (General) / Enable 32-Bit Applications: False

  2. Create a new website - Use default web.config in the Universal install dir

    • Create a new folder, and copy in web.config from `C:\Program Files (x86)\Universal

    • Add Website / Pyshical Path: Path to your new folder with web.config

    • Select the New App Pool Created for Universal.

    • Enable Windows Authentication and disable Anonymous Authentication.

Example "Working" Web Config

<?xml version="1.0" encoding="utf-8"?>
<add name="aspNetCore" path="*" verb="*" modules="AspNetCoreModuleV2" resourceType="Unspecified" />
<aspNetCore processPath="&quot;%ProgramFiles(x86)%\Universal\Universal.Server.exe&quot;" arguments="" stdoutLogEnabled="true" stdoutLogFile=".\logs\log" forwardWindowsAuthToken="true" />