Edit

Share via

Install Commerce Scale Unit on a development environment

This article provides step-by-step instructions on how to install an Internet Information Services (IIS) based Commerce Scale Unit (CSU) on virtual hard disk (VHD) local development and Microsoft Dynamics Lifecycle Services (LCS) cloud development environments for Microsoft Dynamics 365 Commerce. This article is divided into sections representing the different actions you must take to complete the installation, and each section should be followed in order.

Prerequisites

Before beginning a CSU installation, you must complete various one-time tasks. These operations often need specific permissions and may require the help of your organization's administrative personnel.

First, you must create Microsoft Entra ID (formerly known as Azure Active Directory) apps for Retail Server, the Store Commerce for web app (formerly known as Cloud point of sale or CPOS), and the Async Client. The newly created apps for Retail Server and Async Client must also be registered in Microsoft Dynamics 365 Commerce headquarters.

Next, follow the instructions in Configure and install Commerce Scale Unit and then proceed to the next section to continue installation.

Create an SSL certificate for a website based on the host name

Next, you need to create a Secure Sockets Layer (SSL) certificate based on the hostname for the CSU website and the Entra ID app authentication.

To create the SSL certificate, follow these steps.

  1. Connect to the development machine.
  2. Open PowerShell with administrator privileges from Command Prompt.
  3. Enter the following command.
$cert = New-SelfSignedCertificate -Subject "CN=$env:computerName" -DnsName $env:computerName,$([System.Net.Dns]::GetHostByName($env:computerName).HostName) -KeyAlgorithm RSA -KeyLength 2048 -CertStoreLocation "Cert:\LocalMachine\My" -NotBefore (Get-Date) -NotAfter (Get-Date).AddYears(2) -KeyUsage KeyEncipherment,DataEncipherment,CertSign,CRLSign,DigitalSignature -KeyUsageProperty All -FriendlyName "$env:computerName" -KeyExportPolicy Exportable
Export-Certificate -Cert $cert -FilePath "$env:temp\https.cer"
Import-Certificate -CertStoreLocation cert:\LocalMachine\Root -FilePath "$env:temp\https.cer"
  1. Copy the thumbprint value of the new certificate for use later during the CSU install section.

Note

If you create your SSL certificate using a method other than the PowerShell command, ensure that the SSL certificate contains the following keyUsage property values: keyEncipherment, and dataEncipherment. The SSL certificate should also be capable of performing KeyExchange.

Convert the SSL certificate you created to the .CER file format

Next, you must convert the SSL certificate you created to the .CER file format.

Note

To add a SSL certificate to the CSU Entra ID app, it must be in the .CER file format.

To convert the SSL certificate you created to the .CER file format, follow these steps.

  1. On the development machine, select the Windows logo key + R to open the Run dialog.
  2. Enter "MMC" to open the Microsoft Management Console.
  3. Select File > Add/Remove Snap-in.
  4. Under Available snap-ins, select Certificates, and then select Add.
  5. In the Certificates snap-in dialog, select Computer Account, and then select Next.
  6. Select Local Computer, and then select Finish.
  7. Select OK.
  8. Expand Certificates > Personal > Certificates.
  9. Locate the SSL certificate you created earlier, right-click the certificate, and then select All Tasks > Export.
  10. In the export dialog, select Next.
  11. Select No, do not export the private key, and then select Next.
  12. Select DER encoded binary X.509 (.CER).
  13. Select the C:\temp folder, and then enter "DevBoxSelfSigned" as the file name.
  14. Select OK, and then select Save.

Add the SSL certificate to the existing CSU Entra ID app

Next, you must add the SSL certificate you created and converted to the .CER file format to the existing CSU Entra ID app. This step is required for the CSU to generate an authentication token for communication with Commerce headquarters.

To add the SSL certificate you created to the CSU Entra ID app, follow these steps.

  1. In a web browser on the machine where the .CER file was previously saved, go to the Microsoft Entra admin center and edit the CSU Azure App registration you created earlier.
  2. For Client Credentials, select Add a certificate or secret.
  3. Select the Certificates tab.
  4. Select Upload Certificate.
  5. From C:\temp, select the DevBoxSelfSigned certificate.
  6. For Description, enter "Devbox cert".
  7. For Set Description, enter "Devbox Self-signed Certificate".
  8. Select Add.

Note

SSL certificates are issued for one year by default. It's critical that you have a plan to update the SSL certificate associated with your Azure App registration and the Sealed CSU at least one month before expiration. Failure to perform this planned update results in the Sealed CSU no longer being able to communicate with Commerce headquarters. For instructions on how to apply a new SSL certificate, see (Update an expired SSL certificate)[#update-an-expired-SSL-certificate].

Update Commerce headquarters

The following sections list all the changes you must make in Commerce headquarters before you run the CSU installation.

Enter the application ID (client ID) of the CSU Entra ID app

To enter the application ID (client ID) of the CSU Entra ID app in headquarters, follow these steps.

  1. Go to System administration > Setup > Microsoft Entra ID Applications.
  2. Select New
  3. In the Client ID column, enter the application ID (client ID) of the Retail Server app from the Entra portal.
  4. in the Name column, enter descriptive text.
  5. In the User ID column, enter "RetailServiceAccount".
  6. Select Save

Install Sealed CSU prerequisites

Before you can run the Sealed CSU installer, you must complete the following steps.

Verify IIS components installed

To verify that the IIS 6 Management Compatibility (IIS 6 Metabase Compatibility) component is installed on the development machine, follow these steps.

  1. Go to Server Manager > Local Server > Manage > Add roles and features.
  2. Under IIS, confirm that the Management Tools > IIS 6 Management Compatibility (IIS 6 Metabase Compatibility) component is checked.

Install .NET Core hosting bundle

To install the .NET Core hosting bundle on the development machine, follow these steps.

  1. Connect to the development machine.
  2. Open a web browser and go to Download .NET 8.0.
  3. In the ASP.NET Core Runtime 8.0.X section, select the Hosting Bundle installer for Windows to download it.
  4. Run the dotnet-hosting-8.0.x-win.exe installer.

Download and install

For information on downloading and executing the Commerce Scale Unit installer, see Downloading and Running the Commerce Scale Unit Installer. This article describes the steps necessary to download required the configuration from headquarters, download the installation program, and run the installer.

Once installation is complete, proceed to the next section.

Database restores from User Acceptance Testing (UAT)

If you previously set up a sealed CSU using the steps in Download and Install and then restored the headquarters database from another environment, you must perform the following steps to make the sealed CSU functional again.

  1. To recreate the records, follow the steps in Update Commerce headquarters.

    Note

    You must use the same values for Channel Database ID and Channel Profile that you used in the previous installation. If these values are different than the previous installation, you must rerun the installer.

  2. Check your download sessions to see if the jobs are applying.
    • If the jobs are applying, then your CSU is working and you don't need to rerun the installer steps.
    • If the download jobs aren't applying, first check the Windows Event logs to see if there are any obvious errors, then download a new configuration file from the channel database form and rerun the CSU installer using the new configuration file.

Update the sealed CSU to a new version

To update the sealed CSU to a newer version, obtain a newer version of the Sealed CSU installer file and then run the same command line arguments you used to first install the sealed CSU.

Update an expired SSL certificate

To update an expiring or expired certificate for the sealed CSU, you don't need to completely reinstall the sealed CSU. Instead, create the new Secure Sockets Layer (SSL) certificate, and then execute the following command.

CommerceStoreScaleUnitSetup.exe updateCertificates --SslCertFullPath "store:///My/LocalMachine?FindByThumbprint=YourNewSslCertificateThumbprint" --AsyncClientCertFullPath "store:///My/LocalMachine?FindByThumbprint=YourNewAsyncClientAadAppCertThumbprint" --RetailServerCertFullPath "store:///My/LocalMachine?FindByThumbprint=YourNewRsAadAppCertThumbprint"

Unified developer experience for finance and operations apps support

Cloud-hosted finance and operations apps can be provisioned with the unified developer experience. Learn more in Unified developer experience for finance and operations apps