Software
Hosting the Security Token Service for 1000 users requires the following software.
- A server with the Microsoft IIS web server role installed.
- A certificate issued by a certificate authority for digital signatures, used for token signing.
- An SSL certificate is needed for the IIS server. The certificate can be CA-issued or self-signed. If the certificate is self-signed, also install it on the client computers.
- (Optional) A user with read access to AD or LDAP. You can also use an IIS
application pool identity.
Note: Pega Robotic Automation does not support Cryptography: Next Generation (CNG) certificates. Instead, get a configuration service provider (CSP) certificate with RSA (Rivest–Shamir–Adleman) encryption.
Use one of the following operating systems to host the Pega Robotic Automation Security Token Service.
| Operating system | Notes |
| Windows Server 2008 R2 SP1 (Enterprise x64) | Enable .NET Framework 3.5 SP1 as a Windows feature before you run the installer (PegaSTSServiceSetup.exe). |
| Windows Server 2012 R2 (Standard x64) | Enable .NET Framework 3.5 SP1, .NET 4.5, and Windows Identity Foundation 3.5 as Windows features before you run the installer. (PegaSTSServiceSetup.exe). |
| Windows Server 2016 (Standard x64) | Enable .NET Framework 3.5 SP1, .NET 4.5, and Windows Identity Foundation 3.5 as Windows features before you run the installer. (PegaSTSServiceSetup.exe). |
| Windows Server 2019 (Standard x64) | Enable .NET Framework 3.5 SP1, .NET 4.5, and Windows Identity Foundation 3.5 as Windows features before you run the installer. (PegaSTSServiceSetup.exe). |
Previous topic Hardware Next topic STS Overview