Set Up a New Installation

The PatientSecure Server Console runs on the server over a secure SSL connection using HTTPS.

For a full list of supported browser versions, see the supported configurations or your Imprivata PatientSecure representative.

To set up the new PatientSecure installation:

1. Start the PatientSecure Server Console.

   The PatientSecure Server Console may start automatically after installing PatientSecure. If you chose to set up your installation at a later date, open your browser and type the URL in the address line.

   1. Select the server domain from the drop-down list.

   2. Type your user name and password and click Log In.

      You may have a limited number of attempts to enter valid credentials. If you are locked out, contact your system administrator.

   The Imprivata PatientSecure Server page displays the setup options.

2. Click Set up new installation. The Download Passphrase page opens.

3. Click Download to download the passphrase file to the Downloads directory on the local drive.

4. Copy the passphrase file (in .PS format) to a secure location for future use.

   IMPORTANT:

   This passphrase allows you to restore the installation process, in case you ever need to recover or move this installation. Make sure you save this file in a safe place.

5. Click Next. The Set Up Database page opens.

6. Identify the server where the Imprivata PatientSecure database will reside:

   Item	Description
   Server Name	Enter the name (up to 50 characters) or the IP address of the database server.
   Database Name	Enter the name assigned to the database. If you created the database by SQL script, this is the database name you took note of in step 4 of Create an Empty Database by SQL Script.
   Database User	Enter the name of the database user account with which the database will be installed. If you created the database by SQL script, this is the database user you took note of in step 4 of Create an Empty Database by SQL Script. If you are creating the database now, this database user account must have the appropriate permissions to create and set up the database. NOTE: Take note of the username and password for the database service user account.
   Database service account	The two database user accounts have the following permissions: SQL Database server Database user account Alter any DB Alter any login Connect any DB Connect SQL Create any DB Create server role Create availability group Select all user securables View any database View server state Service user account created by PatientSecure during installation User name: ImprivataPatientSecureServices_[DB_NAME] Permissions granted to the service user at the SQL Server level: Connect SQL View Database State View Server State Role membership granted to the service user for the PatientSecure database: datareader datawriter ddladmin executor with permission to execute stored procedures against the PatientSecure database owner public For more information, see "Permissions of Fixed Database Roles (Database Engine)" on the Microsoft TechNet website.
   Database Password	Type the password for the database user account.
   Import Settings	(Optional) Navigate to the location where the PatientSecure export file (in .ZIP format) is stored. Click Open to upload the file. For more information, see Export Settings from an Installation.

7. Click Next.

   The Configure Active Directory page opens.

8. Enter the Active Directory server information and specify the Active Directory groups with access permissions for PatientSecure:

   NOTE: The Active Directory groups must already exist on the Active Directory server. You cannot assign a group to more than one role.

   TIP: You can add individual users to your Active Directory groups through the Location Access settings in the Admin Console at any time.

   Item	Description
   Display Name	Enter the name (up to 50 characters) that will reference Active Directory.
   Domain	Enter the domain name assigned to the Active Directory server, and then specify the port: If SSL is enabled, type 636. If SSL is not enabled, type 389.
   Container	Enter the container name for organization units (OU), if any.
   AD Account Name	Enter the name of the user who is a domain administrator on the Active Directory.
   AD Account Password	Enter the password for the user who is a domain administrator on the Active Directory.
   Owners	Specify the Active Directory group(s) with users who will be assigned Owner access to Imprivata PatientSecure.
   Administrators	Specify the Active Directory group(s) with users who will be assigned Administrator access to Imprivata PatientSecure.
   Users	Specify the Active Directory group(s) with users who will be assigned User access to Imprivata PatientSecure.

   For more information on the user access levels, see PatientSecure User Groups.

9. Click Next. The Installation Type page opens.

10. Select the option that best models how you will install Imprivata PatientSecure services:

    Item	Description
    Basic	Installs the minimum set of services required for PatientSecure to run on a single application server, using an automatically generated certificate. IMPORTANT: The Automatically generated certificate should only be used in a test environment, not a production environment. The minimum set of PatientSecure services include: Generate Certificate/Cert Authority Identity Server Web Services Admin Console Client UI Reporting Service Job Scheduler HL7 Emergency Search & Authentication Service System Health Service
    Complete	Installs the complete set of Imprivata PatientSecure services on a single application server, using an automatically generated certificate. IMPORTANT: The Automatically generated certificate should only be used in a test environment, not a production environment. Installs the set of services from the Basic option, plus PatientSecure EMPI Service and FHIR Service.
    Advanced	Customize how PatientSecure services are installed on multiple application servers. or using an existing certificate that you select. For more information, see High Availability Support.

11. Click Next.

    • For a Basic or Complete environment:

      1. Enter the hostname (up to 50 characters) for the Imprivata PatientSecure application server, and then click Next.

      2. Enter the Windows administrator credentials (user name and password) for the Imprivata PatientSecure application server, and then click Confirm.

         When your installation is complete, the Imprivata PatientSecure Server Dashboard opens.

         The Imprivata PatientSecure services are installed on the application server.

    • For an Advanced environment, the Imprivata PatientSecure Server Dashboard opens. You will set up the Imprivata PatientSecure services manually on one or more servers.