The Web server is required for all components to function.
Before you begin
Confirm that the Web Server machine is part of a domain and that the user account is a member of that domain.
Make sure the domain account has sufficient Read/Write permissions for accessing SQL.
Confirm that ASP.NET and Windows Authentication Roles are installed by right clicking on My Computer > Manage > Roles and verifying that ASP.NET and Windows Authentication are listed.
If .NET4 is already installed, navigate to IIS > ISAPI and CGI restrictions and confirm that ASP.NET 4.0 is allowed.
Configuration—Web Server
Class Server class hardware (64-bit)
Operating Systems Windows Server 2003 SP1 64-bit Enterprise
Windows Server 2003 SP1 R2 64-bit Enterprise
Windows Server 2008 SP1 64-bit Enterprise
Windows Server 2008 R2 64-bit Enterprise Processor (CPU) Intel Quad-Core (for example, Intel Core 2 Quad)
AMD Opteron
Memory (RAM) 8 GB or greater ( >16 GB preferred) Hard Drive Capacity 250 GB or greater with > 1 GB available Hard Drive Speed 7,200 RPM (10,000 RPM or faster preferred) Network Configuration Gigabit Ethernet (GbE)
The Web Server must be part of an Active Directory domain.
Restrictions Intel Itanium processors are not supported.
A dedicated, unshared USB port must be present unless the Examiner license is acquired using the Network Authentication Server (NAS).
Recommendations The Web server performance is optimized for 64-bit hardware.
Use fault-tolerant drives and or fault-tolerant power supplies to reduce the possibility of outages or data loss.
Optimize Web server performance by storing index files locally.
For optimal performance, store the merged, index file on the Web server.
Additional Software Microsoft Excel 2003, 2007 SP2, or 2010 (required for Case Screening Reports)
Windows Installer 4.5
IIS (see Installing and Configuring IIS (Internet Information Server))
MS DTC (see Installing MS DTC (Microsoft Distributed Transaction Coordinator))
Windows Imaging Component (WIC) must be installed to support Microsoft .NET 4, which is automatically installed if not present on the system. The WIC is available on all supported operating systems except Windows Server 2003. If you are installing the data service, examiner service, or Web components on Windows Server 2003, you must first install WIC. Please refer to Installing the .NET Framework at
http://msdn.microsoft.com/en-us/library/vstudio/5a4x27ek(v=vs.100).aspx.
Network Ports
TCP Port 4445 is available for connectivity throughout the enterprise network.
Port 8888 must be available; if SSL will be used, port 443 must be available.
Permissions
If it does not exist already, your Windows administrator must create a new domain user account with specific permissions for the EnServer service. The EnServer service is Guidance Software's proprietary Web server and is used to running certain functionality. The EnServer requires separate configuration from the Web application.
The EnServer service user account must:
Be part of an Active Directory domain.
Have permission to read data from and write data to all of the directories specified on the config page (localhost/config). This includes Web files, Temp, User Home, and DB Temp.
Have read/write permissions to the C:\inetpub\EnCase Application\Web Components\ECC Background Service\BackgroundService.exe.Config file.
Have read/write permissions to the Web application's C:\inetpub\EnCase Application\Web Components\ECC Background Service\web.config file.
Have the same database access permissions as the Examiner user (see Preparing the Examiner Service Machine(s) on page 34).
Have permission to view Group Membership on Active Directory domains
The Domain User Account must have read permissions for the internal output folder and the job output folder of every collection and processing job. Each case has one internal output folder; however, the job output folder is different for each job.
Be aware of your company's email delivery rules and policies. To prevent spam, your email sever may be set to limit the number of email messages sent in an hour. If such settings are in place, your hold notifications will not be delivered. Make sure your mail server is set up to send your hold notifications successfully.
Prior to installation
To run the Web server, the computer on which it is installed must be added to an Active Directory domain.
The Web server's temp directories should point to the following path:
..\Program Files\EnCase Applications\Temp
The domain user that the service is running under must have Full Control permissions in the following directories:
..\Program Files\EnCase Applications\Temp ..\Program Files\EnCase Applications\Storage For the Web server to run:
Confirm that ASP.NET and Windows Authentication Roles are installed by right clicking on My Computer > Manage > Roles and verifying that ASP.NET and Windows Authentication are listed as installed under Role Services.
The MS DTC component service must be enabled (see Installing MS DTC (Microsoft Distributed Transaction Coordinator)).
MS DTC must be configured to enable both inbound and outbound connections. A firewall exception may be required.
Before installing and configuring the Web server, deactivate any services or applications that use port 80. Port 80 is commonly used by Web services such as Microsoft Internet Information Services (IIS) or Apache. If you intend to use SSL certificates with the Web server, you also need to make sure there are no conflicts with port 443.
Although the Web server cannot share ports with these third party servers, it can run side-by-side with them as long as there is no port conflict. After you configure the Web server to remove any such conflicts, you can restart these servers.
Note: You can also override the port setting, and run the service on a non-privileged port (a port higher than 1024).