Prerequisites

SMTP server

SigningHub uses email as the primary notification medium. User registration and all notifications are sent via SMTP. Hence, it is a critical part of the architecture and deployment. Details required are:

• Hostname/IP address of SMTP server

• Listening Port of the SMTP server

• TLS/SSL authentication to communicate with the SMTP server (if required)

• User name and password to authenticate to the SMTP server (if required)

• Email 'From' Address for notifications sent from SigningHub

• Email 'To' Address for alerts and warnings sent by SigningHub

• Email Subject for alerts and warnings sent by SigningHub

Windows Roles and Features (2016, 2019, 2022, 2025)

SigningHub Enterprise has dependencies on several Windows roles and features. These must be installed before deploying SigningHub Enterprise. Required dependencies are added via Windows Server Manager.

1. Open Server Manager and select Manage.

2. From the menu, choose Add Roles and Features.

3. On the Add Roles and Features Wizard, click Next until you reach the Server Roles screen.

   
4. Click Next until you reach the Role Services screen.

5. Select the required items as shown. These are mandatory for SigningHub Enterprise when Active Directory is used for user authentication.

   
6. Scroll down and select the remaining required options.

   
7. Continue clicking Next until you reach the Identity Federation Support screen.

8. Select Identity Federation Support and click Next to proceed through the subsequent IIS feature selection screens.

   
9. If the Windows operating system media is not available on the server, you may be prompted to provide the source path on the Confirm Installation Selections screen.

   
10. Provide the correct path to the installation media and click OK.

11. Once the roles and features have been successfully installed, restart IIS.

    Restart the IIS server from the IIS Management Console to ensure the changes take effect. Ensure that the IIS server is restarted, not individual application pools or websites.

URL rewrite module

This module is required to open SigningHub in responsive design mode, when opened on a mobile device. Click here to download the URL Rewrite module from Microsoft.com.

Additional Windows configuration (2016,2012 R2,2012)

Make sure that the Decimal Symbol is dot (.) instead of comma (,) in Control Panel > Region> Additional Settings as shown in the following screenshot:

ADSS signing server dependencies

ADSS Signing Server has no Windows dependencies like those required for SigningHub Enterprise. This is because it is a Java EE application that runs off the bundled Tomcat server. However, a database is still required, and optionally an HSM to secure private key material.

If you are using an external CA, then the ADSS Signing Server must be configured appropriately. Otherwise, SigningHub Enterprise will not function as expected. Click here for complete details of the ADSS Server.

Database

Both SigningHub Enterprise and ADSS Signing Server require their respective databases. It is not needed to create the schema or configure any other feature before the installation.

Permissions are required to allow the creation of database tables, and entry, modification, and removal of data within those tables.

• SQL Server For details about SQL Server installation, user creation and permissions, refer to Microsoft-SQL-Server-Installation-Guide-for-ADSS-Server.pdf in the [ADSS Server-Home]/docs directory.

• Oracle The following privileges are required to install the application with Oracle DBMS:

  • Connect

  • DBA

  • Resource