6. How do I know if it's working?
You can use the provided test page to confirm whether it is working correctly.
Ensure that the Web Service Extension Active Server Pages is activated in the IIS Manager application (this can be found by opening the Internet Information Services (IIS) Manager application in the Administrative Tools section of the 'Start' menu and navigating to the Web Service Extension folder under your 'local computer' in the left-hand pane of the IIS Manager window.
Copy the provided test file test.asp into the IIS web application directory that you plan to Webauth-protect.
Start a browser and connect over HTTPS to the test.asp file that you placed in your IIS instance, using the same hostname in the URL as is on your certificate, to test that your IIS instance is running (from the same machine it may be something like “http://yourserver.subdomain.ox.ac.uk/test.asp” if you have decided to protect the entire Web Application).
If the WebAuth software is inactive you should see a page resembling the following, with the message “WebAuth is inactive for this location”:
If the WebAuth software is active you should see the familiar University of Oxford Webauth pages. Enter your SSO credentials, and click Login.
Click Continue... below the green tick and you should be redirected to the original test page, which should appear as follows:
If you see the page with a table that includes the above variables (but with values specific to you and your session) you have been successfully authenticated and WebAuth-IIS is working correctly.