Search documentation:
	Help  Advanced
Published 05/15/2002

Chapter 2

Installing and Testing the CCC

This chapter describes the steps to install and configure the CyberSource Commerce Component for Microsoft Site Server Commerce Edition. This chapter contains the following sections:

• System Requirements
• Installing the CCC for Microsoft Site Server
• Creating Your Certificate and Private Key
• Testing Your Setup Using a Basic Store

System Requirements

To run the CCC, your system must meet the following minimum requirements:

• Windows NT® Server 4.0 SP6 or Windows® 2000 Server or Windows® 2000 Advanced Server
• Intel® Pentium® II 466 MHz processor
• 256 MB RAM
• 1 GB free space on hard drive

For optimal performance, your server must meet the following requirements:

• Windows NT Server 4.0 SP6 or Windows 2000 Server or Windows 2000 Advanced Server
• Intel Pentium® III, at least 500 MHz processor
• 512 MB RAM
• Ultra Fast Wide SCSI hard drive or UltraATA hard drive
• 2.5 GB free space on hard drive

You must also install Microsoft Site Server 3.0 Commerce Server on your server. Site Server 3.0 is available from Microsoft for use on the Windows NT and Windows 2000 operating systems. For more information, see the Microsoft Site Server Commerce Edition Web page at http://www.microsoft.com/siteserver/commerce/default.htm.

To enable ICS2 support, your server must be able to connect to the Internet.

Installing the CCC for Microsoft Site Server

This section explains how to configure the CCC to communicate with the ICS server, using an evaluation account and merchant ID you receive when you register for the account.

Uninstalling the Previous Version

If you are upgrading from a previous version of the CCC, you must uninstall that version before installing the new version.

Uninstalling the CCC

1. From the Windows NT Start menu, select Start > Settings > Control Panel.
2. Double-click the Add/Remove Programs icon.
3. Select the CyberSource Commerce Component, then click the Add/Remove button.

Installing Version 3.4.0.0

To install version 3.4.0.0 of the CCC, follow the steps below:

Installing the CCC

1. Download the file cccssce30-NT-2000-3_4_0_0.exe for the CyberSource Commerce Component for Microsoft Site Server. You can save the file in any directory.
2. Double-click the downloaded .exe file.

Note  You must install the CCC on the computer that runs your Web server.

3. To register the CyberSource Commerce Component with Microsoft Site Server, select Start > Programs > CyberSource Commerce Component > Register Component.

After you install the CyberSource Commerce Component, it appears as a selection in the Order Processing Pipeline (OPP) when you run Microsoft Site Server Pipeline Editor.

4. To verify that the CyberSource Commerce Component communicates properly with the CyberSource ICS servers, select
• Start > Programs > CyberSource Commerce Component > Test an SCMP Transaction
• Start > Programs > CyberSource Commerce Component > Test the Commerce Component

The component is now installed on your system. Later, you will configure the component for use with your store (see Available CCC Services).

Creating Your Certificate and Private Key

CyberSource uses technology based on public key cryptography to securely exchange messages over the Internet. This technology requires each business partner to have a key pair: a public key, which is delivered in a certificate, and a private key. Before you can securely exchange messages with CyberSource, you must generate your certificate and private key.

You and CyberSource each have your own certificate, which you share, and your own private key, which you keep secret. CyberSource gives you the CyberSource certificate, while keeping the CyberSource private key confidential. Likewise, you share your certificate with CyberSource, but keep your private key secure.

Store your certificate and private key, along with the CyberSource certificate, on your servers where you installed the CyberSource client software. It is your responsibility to closely guard your private key, to ensure that your confidential information is not compromised.

To generate your certificate and private key, use the ECert application included with your installation software.

Generating Your Certificate and Private Key

1. Change to the directory where you installed your client software.

For Windows NT, select Start > Programs > Command Prompt, then change to the path for the directory where ECert is located.

2. Run the ECert application.

For the C and Perl versions, type:

ecert <merchant_id>

where <merchant_id> is your merchant ID.

Note  If you installed your client software somewhere other than the default directory, use the path option to designate your directory, as follows:
ecert <merchant_id> -path <directory>
where <directory> is the name of the directory where your keys are stored. The path option takes first precedence, followed by the ICSPATH environment variable, and then comes the default path of [current drive]:\opt\ics\keys (Windows NT).

For Windows NT, ECert will check for the default path of /opt/ics/keys and if it is not present, ECert will create these directories one by one. By default, ECert writes the files to [Current Drive]:\opt\ics\keys on Windows NT, but you may specify an alternate directory as long as you set the environment variable ICSPATH (for example, setenv ICSPATH /opt/ics).

The syntax and options for ECert are:

ecert <merchant_id>

[ -help ] [ -version ] [ -noprompt ] [ -update ]

[ -display ] [ -debug ] [ -path <key_directory> ]

[ -proxy <url> [ <username> ] [ <password> ] ]

[ -server <ics_server_host> <ics_server_port> ]

Following are descriptions for the options:

• help — returns the ECert syntax.
• version — reports the version of ECert you have installed.
• noprompt — causes ECert to run without additional confirmation.
• update — updates your certificate and private key. This option also updates your copy of the CyberSource certificate. You can only use this option if your certificate already exists in the CyberSource server and your site has gone live.
• display — displays your certificate and private key information, such as expiration date.
• debug — provides debugging information if you experience problems with the ECert application.
• path <keys_directory> — causes ECert to write the certificate and private key files to directory other than the default directory. The default is [current drive]:\opt\ics\keys for NT. For example, if you are running Windows NT in Z:\ drive and you run ECert from any directory in Z:\ drive, your keys by default would be put in Z:\opt\ics\keys.
• proxy <url> [ <username> ] [ <password> ] — causes ECert to use a proxy connection before connecting to an ICS server. The username and password are optional, but must be used together if included.
• server <ics_server_host> <ics_server_port> — causes ECert to use the host <ics server host> and port <ics_server_port> to connect to CyberSource. The default host server is setup.ic3.com. The CyberSource test server is ics2test.ic3.com, and the CyberSource production server is ics2.ic3.com. The default port is 80. Do not use CyberSource's test server or porduction server unless you are specifically instructed to do so by CyberSource Customer Support.
3. When the ECert application successfully runs, it writes the following files to disk:
• merchant_id.crt— certificate file
• merchant_id.pvt—private key file
• merchant_id.pwd—password file
• CyberSource_SJC_US.crt—CyberSource certificate file

By default, the files are written to the following directory:

<current drive>:\opt\ics\keys (Windows NT)

Note  The ECert application automatically sends a copy of your certificate (.crt) file, but not your private key (.pvt) file, to the CyberSource ICS server. Always keep your private key secret.

4. Copy the CyberSource certificate, your certificate, your private key, and your password files to the keys directory of any server where the ICS client libraries are installed. Your certificate (.crt) and private key (.pvt) files are paired and must be used together.

After you run ECert to generate your certificate and private key, you can securely send transaction requests to the CyberSource test server. When you go live, you can securely send transaction requests to the CyberSource production server

You need to update your certificate and private key yearly to reduce the risk of having them compromised. For more information, go to the CyberSource Small Business Customer Support Center, then click on the "Getting Started" link in the left navigation bar.

Testing Your Setup Using a Basic Store

To test communication between the CCC and the CyberSource ICS server, create a basic application that uses the CCC services you want to implement. Once you complete the steps in Installing the CCC for Microsoft Site Server", test as follows.

Testing the CCC

1. Create a new online store using the Store Foundation Wizard and StoreBuilder Wizard.
2. To run the Pipeline Editor, select Start > Programs > Microsoft Site Server > Commerce > Pipeline Editor.
3. Open the purchase.pcf file for the new store, then add the CyberSource Commerce Component to the payment stage. Remove any other component that is in this stage.
4. Double-click the CyberSource Commerce Component.

The property window opens.

5. Select Authorize Card from the Available Services list, then click the check mark to transfer Authorize Card to the Selected Services window.
6. Select Bill Card from the Available Services list window, then click the check mark to transfer Bill Card to the Selected Services window.
7. Set the Merchant Key to the merchant ID you received when you registered for an evaluation account.
8. Click the Properties button, then the Payment General tab. Click the Auth Request ID Filled by Authorize Card check box.
9. Select the General tab. Click the Test Server option button to use the ICS test server for processing.
10. Save the file. Restart the Web server in the Microsoft management console.
11. Copy the cybersource_result.asp file from \cybersourcedir\Samples\Active Server Pages (where cybersourcedir is the path where you installed the CyberSource Commerce Component files) into the top directory of the new store.
12. Open the xt_orderform_purchase.asp file in \cybersourcedir\samples\ActiveServerPages (where cybersourcedir is the path where you installed the CyberSource Commerce Component files).

Select and copy all the lines between Start CyberSource Commerce Component and End CyberSource Commerce Component. Paste the lines into the xt_orderform_purchase.asp file of the new store, immediately before the line:

"errorLevel = UtilRunTxPipe("purchase.pcf", mscsOrderForm, mscsPipeContext)"

13. In the new store's file xt_orderform_purchase.asp, immediately after the line:

"errorLevel = UtilRunTxPipe("purchase.pcf", mscsOrderForm, mscsPipeContext)"

add the lines:

%>

<!--#INCLUDE FILE="cybersource_result.asp" -->

<%

These lines display the result of a transaction in the browser. You do not need to configure the database for initial testing purposes.

14. Change the last line of the xt_orderform_purchase.asp file into a comment by adding the word rem as follows:

rem call Response.Redirect("confirmed.asp?" &

mscsPage.URLShopperArgs("order_id", order_id)

15. Shop the store as if you were a customer. When you click the Purchase button, you see the result of the transaction in your browser.

After you conduct a successful test, you can configure the CCC for use with your store.