Shift4 Interface to POSitouch (POSibridge) Technical Installation Guide

Transcription

Shift4 Interface to POSitouch (POSibridge) Technical Installation Guide
Shift4 Interface to POSitouch (POSibridge)
Technical Installation Guide
ii
POSibridge Technical Installation Guide
Copyright Notice
Shift4 Corporation
1491 Center Crossing Road
Las Vegas, Nevada 89144
www.shift4.com
POSibridge Technical Installation Guide
Publication Date: 1/26/2010
Copyright © 2010 Shift4 Corporation. All rights reserved worldwide.
No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means,
electronic, mechanical, photocopying, recording or otherwise, without the prior written permission of Shift4
Corporation. The contents of this publication are proprietary information of Shift4 Corporation. Shift4 Corporation
reserves the right to revise this document and to periodically make changes to the content thereof without any
obligation or notification to any organization of such revisions or changes unless required to do so by prior written
agreement.
Shift4®, 4Go Secure Suite®, $$$ IN THE BANK®, Fraud Sentry® and IT'S YOUR CARD® are products and Registered
Trademarks of Shift4 Corporation. DOLLARS ON THE NET℠, Universal Transaction Gateway™, UTG™, 4Go™, 4Go
SafeSwipe™, i4Go℠, Secure Suite 4 Micros™, NetAPI™, NetAudit™ and NetCharge™ are products and services of
Shift4 Corporation. All other Trademarks and Registered Trademarks are marks of the various companies and/or
organizations. "Secure Payment Processing," "Tokenization," and "TOKENSTORE" are Service Marks of Shift4
Corporation. All graphics are © copyright of Shift4 Corporation.
Notice of Confidentiality
This document contains information that is proprietary to and/or confidential of Shift4 Corporation. It carries the Shift4
classification “External Use NDA.” It is provided for the sole purpose of specifying the point-of-sale interface to Shift4
Corporation. The recipient agrees to maintain this information in confidence and not reproduce or otherwise disclose
this information. Please refer to the signed Bilateral Non-Disclosure and Confidentiality Agreement for additional
agreements and expectations.
Notice to Government End Users
If any Shift4 product is acquired under the terms of a DoD contract: Use, duplication or disclosure by the Government
is subject to restrictions as set forth in subparagraph (c)(1)(ii) of 252.227-7013. Civilian agency contract: Use,
reproduction or disclosure is subject to 52.227-19 (a) through (d) and restrictions set forth in the accompanying end
user agreement. Unpublished-rights reserved under the copyright laws of the United States.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
iii
Table of Contents
Copyright Notice
ii
Table of Contents
iii
Chapter 1 - Getting Started
1
Using the Guide
2
Who Should Use This Guide?
Assumptions
Related Documentation
2
2
3
Product Support
4
Live Support
On the Web
Feedback
4
4
4
Chapter 2 - Security and POSibridge
5
Shift4 Tokenization
6
Security Best Practices
7
Networking Guidelines
Wireless Implementations
Remote Access
7
7
7
System Privileges
Password Safety
Log Data
Prior Data Sanitization
8
8
8
8
Chapter 3 - POSibridge Installation
9
Before You Begin
10
Installing POSibridge
11
Chapter 4 - POSibridge Configuration
15
Editing the Web Server
16
Adding a POSitouch Connection
17
Adding the UTG Connection
19
Adding Mail Notifications
22
Chapter 5 - POSitouch System Configuration
23
Modifying 4Go in the UTG TuneUp
24
Editing TRANSERV.ini
27
Editing SPCWIN.ini
28
POSitouch Back Office
29
Configuring Gift Cards
30
Chapter 6 - POSibridge Interface
Task Explorer
31
32
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
iv
POSibridge Technical Installation Guide
Default Settings
Additional Settings
32
32
Advanced Options
34
Filter
Trace Settings
34
34
APPENDIX A - Revision History
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
35
1
Chapter 1 - Getting Started
Welcome to the Shift4® Interface to POSitouch.
Chapter Topics:
Using the Guide
Product Support
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
2
POSibridge Technical Installation Guide
Using the Guide
The Shift4 Interface to POSitouch (POSibridge) acts as a bridge between POSitouch and the
Shift4 Universal Transaction Gateway™ (UTG™). When a transaction is initiated by a
POSitouch system, POSibridge converts and then sends the data to the UTG:
From there, the UTG continues with a seamless, secure transaction processing procedure:
For additional information about the UTG, see the Universal Transaction Gateway Technical
Reference Guide.
Who Should Use This Guide?
The POSibridge Technical Installation Guide provides detailed information on installing
POSibridge and configuring its various components. This guide is intended for individuals
familiar with installing, programming, configuring, and updating the POSitouch system, such
as:
l
Programmers/Installers
l
Dealers
l
Customer Service Representatives
l
Training Personnel
l
MIS/IT Personnel
Assumptions
The POSibridge Technical Installation Guide assumes the following knowledge or expertise:
l
Network configuration
l
Operational understanding of PCs
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
3
Chapter 1 - Getting Started
Using the Guide
l
Understanding of POS terminology and concepts
l
Familiarity in configuring or installing POSitouch systems
Related Documentation
The following Shift4 documents contain information about POSibridge-related products. All of
the documents are available from the Shift4 website. If you do not have access to the Internet,
contact Shift4 as described in the Product Support section to obtain these documents:
l
Universal Transaction Gateway Technical Reference Guide
l
DOLLARS ON THE NET℠ User Reference Guide
l
4Go SafeSwipe™ Technical Reference Guide
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
4
POSibridge Technical Installation Guide
Product Support
For assistance with this and any other Shift4 product, visit the website at www.shift4.com. It
provides access to the Shift4 FAQ page, where answers to general and technical questions
regarding the entire Shift4 product line are available.
Live Support
Information about troubleshooting techniques and handling special problems that may occur
during installation or configuration can be obtained by contacting the Shift4 Support
department at (702) 597-2480, option 2.
On the Web
The Shift4 website at www.shift4.com offers technical notes, patches, and guides. 24 hours a
day, 7 days a week, 365 days a year. The Shift4 website also contains Troubleshooting and
FAQ sections to provide additional guidance.
Feedback
Your feedback regarding Shift4 products and documentation is welcome and encouraged and
we appreciated your comments. If you have any documentation comments or suggestions
about this or any other Shift4 product, please send them to us at techdocs@shift4.com.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
5
Chapter 2 - Security and POSibridge
POSibridge is implemented in conjunction with 4Go and the UTG, which along with Shift4
Tokenization℠ provide data security for POSibridge when installed and configured as instructed
in this guide. This chapter includes an overview of Tokenization and provides information about
important best practices to help ensure security.
The Payment Application-Data Security Standard (PA-DSS) is derived from the PCI Data
Security Standard (DSS) and is used by Payment Application-Qualified Security Assessors (PAQSAs) to validate compliance. PA-DSS validation is the payment application vendor's
responsibility. This chapter must not be construed as a roadmap to PCI DSS compliance or a
guarantee that Shift4 will render a merchant PCI DSS compliant when POSibridge is used.
This chapter is primarily devoted to security best practices relative to your payment
application and cardholder data environment and is far from all inclusive. Refer to the PCI Data
Security Standard (DSS) for complete details on all of the security requirements for cardholder
data that is processed, stored, and transmitted:
https://www.pcisecuritystandards.org/pdfs/pci_pa_dss.pdf
Chapter Topics:
Shift4 Tokenization
Security Best Practices
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
6
POSibridge Technical Installation Guide
Shift4 Tokenization
Shift4 has developed Tokenization℠ technology that enables merchants and payment
application vendors to enjoy the highest level of payment processing security possible without
requiring a lot of time, money, or resources. Merchants running Shift4 Tokenization technology
in their point-of-sale (POS) system or property management system (PMS) will dramatically
simplify their PCI compliance requirements because cardholder data is never stored in the
system or anywhere else on the property.
A purchase using Tokenization begins like any other transaction. The merchant swipes the card
data and sends it to Shift4 over the UTG fully encrypted. Shift4 sends the card data on to the
processor and receives back from the processor an approval. All steps to this point are the
same; it is after this point where the process differs. Instead of sending back the card data to
the merchant and the POS system, Shift4 turns the data into a token. A token is a globally
unique, randomized, 16-character representation of the credit card data. For payment
applications and merchants who utilize Shift4, only the token is stored in their system.
The token spans the lifetime of the transaction, even into history, so it provides all the same
support for tips, tabs and incremental authorizations. It is stored on the POS system and when
an incremental authorization is required on the card, the token is sent to Shift4. The token
represents a specific credit card transaction and card data that is stored in Shift4's data center.
When it is sent through, Shift4 translates that token into the card data and sends it to the
processor. The processor sends back the authorization code; Shift4 turns it back into a token
and sends that along with the approval code to the merchants. The authorization goes through
and again no credit card data is stored on the system. That means that the merchant doesn't
need the card number or data past the initial request, so there is absolutely no reason to store
this potentially dangerous information.
For additional information about using this advanced security feature, have your POS vendor
contact apisupport@shift4.com.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
7
Chapter 2 - Security and POSibridge
Security Best Practices
Security Best Practices
While Shift4 products provide robust, intuitive security controls, there are security best
practices that must be enforced by the merchant to ensure cardholder data security. Review
the following merchant responsibilities, and reference the PCI DSS website at
http://www.pcisecuritystandards.org for the description of secure networks.
Networking Guidelines
Shift4 Interface to POSitouch must be installed in a trusted network segment, not the DMZ, to
avoid exposing data to corruption or theft. Shift4 recommends that all servers and stations be
located on a dedicated subnet (network) and protected from the Internet by a firewall.
Wireless Implementations
Ensure wireless networks transmitting cardholder data or connected to the cardholder data
environment use strong encryption for authentication and transmission in accordance with the
PCI DSS Requirement 4.1.1. From a security best practice perspective, Shift4 recommends
avoiding the use of wireless networks as they are less secure than wired implementations.
However, in the event wireless networks must be used:
1. Change the default SSID on the wireless router.
2. Configure your wireless router to never broadcast the SSID.
3. Use the WPA2/AES protocol; it fully implements the mandatory elements of the IEEE
802.11i standard, for all wireless networks transmitting cardholder data or connected to
the cardholder data environment.
4. Do not use WPA/TKIP or WPA2/TKIP because they can be easily compromised. TKIP is
also vulnerable to ARP poisoning.
5. Use static, RFC 1918 compliant IP addresses on all wireless nodes.
6. Enable MAC address filtering on the wireless router to guard against IP spoofing.
7. Setup the wireless router ACL to white-list only those wireless nodes – IP & MAC address
– that are allowed to connect. Deny connection requests by all others.
8. All other wireless access points not part of the payment system must be logically
segregated from the cardholder trusted network segment by a firewall.
Remote Access
Never install hardware or software that is not required, such as remote access mechanisms. If
it must be installed, remote access to the cardholder data environment, which includes the
payment application, must be restricted to only those individuals that require access to do their
job. Remote access must be authenticated with two-factor authentication in accordance with
PCI DSS Requirement 8.3. Ensure all remote users have unique user names and passwords.
Remote access activity by vendors and contractors must be monitored. Deactivate their user
accounts when not in use.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
8
POSibridge Technical Installation Guide
System Privileges
Administrative access is required to install all Shift4 products in the Shift4 branch of the
installation directory, with "directory create" permissions, "file change" permissions, and
complete "read/write" permissions for the HKEY_LOCAL_MACHINE\SOFTWARE\Shift4
Corporation folder in the Registry.
Password Safety
Passwords for user accounts must be strong strings of at least seven alpha-numeric
characters. Eight or more characters with numbers, a mix of uppercase and lowercase letters,
and special characters would be considered a strong password. Never use dictionary words or
the user name for passwords.
WARNING! Do not use any vendor-provided, default passwords. Doing
so will render your system vulnerable and violate PCI DSS R2.
Log Data
PCI DSS R10 requires that all log data be retained for a minimum of 12 months. Configure all
log settings to ensure compliance. It may be necessary to incorporate an offline storage
procedure (tape, DVD, etc.) to reduce the amount of disk space used to store log data and still
comply with the DSS logging requirement.
Prior Data Sanitization
All files retaining sensitive cardholder data must be securely deleted after the Shift4 Interface
to POSitouch has been successfully installed and configured. Securely deleted data must not be
recoverable from a disk. Most of the sensitive information is found in old log files and journals.
The logging and journal features in the system must also be modified to prevent the creation of
new, non-secure records. Once the logging features are disabled, the Shift4 Interface to
POSitouch creates new, secure records of card-processing activity.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
9
Chapter 3 - POSibridge Installation
This chapter contains information about installing POSibridge and the steps you must take
before installation.
Chapter Topics:
Before You Begin
Installing POSibridge
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
10
POSibridge Technical Installation Guide
Before You Begin
The installation process consists of obtaining the files, installing POSibridge, and configuring
POSibridge through the POSibridge TuneUp utility. Shift4 provides an installer containing the
installation files through a web download. Before you begin installation of POSibridge, verify
the following:
l
The system onto which you are installing POSibridge has a live Internet connection.
l
The Universal Transaction Gateway (UTG) is properly configured and running.
Tip: You can install POSibridge on any system with a networked
connection to the POSitouch server. Shift4 recommends installing
POSibridge directly on the POSitouch server.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
11
Chapter 3 - POSibridge Installation
Installing POSibridge
Installing POSibridge
To install POSibridge, perform the following steps:
1. Download POSibridge at http://www.shift4.com/downloads/POSibridgesetup.exe and
save the file to the desktop of the system onto which you are installing POSibridge.
2.
Double-click
and then click Next.
3. Review the License Agreement, click I accept the terms of the License Agreement, and then
click Next.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
12
POSibridge Technical Installation Guide
4. Confirm the default destination folder for installation or click Change... to specify a
different location and then click Next.
5. Click Next to begin installation.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
13
Chapter 3 - POSibridge Installation
Installing POSibridge
6. Select Run POSibridge TuneUp now and click Finish.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
14
POSibridge Technical Installation Guide
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
15
Chapter 4 - POSibridge Configuration
After you install POSibridge, you must configure the settings using the POSibridge TuneUp. The
configuration process is comprised of the following primary steps:
Chapter Topics:
Editing the Web Server
Adding a POSitouch Connection
Adding the UTG Connection
Adding Mail Notifications
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
16
POSibridge Technical Installation Guide
Editing the Web Server
To edit the default Web server, perform the following steps:
1. Open POSibridge TuneUp if you have not already done so.
2. On the Options tab, select the WebServer block and then click Edit.
3. In the Web Server window, type the following information:
l
l
l
l
From the Host Address list, select the IP address of the machine. If you have
multiple network cards, select the IP address for a network card that has an
Internet connection.
Do not modify Listen Port unless instructed to do so by Shift4. The default port is
26908.
(Optional) In the Common Name (SSL) box, type a descriptive server name.
(Optional) In the Allowed IP Addresses box, type the IP addresses that are allowed
access to the Web Server.
4. Click OK.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
17
Chapter 4 - POSibridge Configuration
Adding a POSitouch Connection
Adding a POSitouch Connection
To add a POSitouch Connection, perform the following steps:
1. In the Option area of the POSibridge TuneUp window, click Add and then select POSitouch
Connection.
2. In the POSitouch Connection window, type the following connection information:
l
In the Connection Name box, type a descriptive name.
l
In the Listen Connection box, type the IP address of the location of POSibridge.
l
In the Continuous Connection box, type the IP address of the location of POSitouch.
l
In the Port ($ for Hex) boxes, do not change the default unless instructed to do so by
Shift4.
3. In the Merchant Information area of the POSitouch Connection window, type your Shift4
Merchant ID (MID) in the Merchant Id box.
4. Contact the Shift4 Support department at (702) 597-2480, option 2 for assistance in
using the following optional settings in the Merchant Information area:
l
(Optional) In the Serial Number Override box, type your API Serial Number that
corresponds to the Shift4 MID.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
18
POSibridge Technical Installation Guide
l
l
l
(Optional) In the Password Override box, type your API password that corresponds
to the API Serial Number. Type your API password again in the Password Verify
box.
(Optional) In the By Terminal area, click Add if you have different revenue centers
and want to assign MIDs to specific POS terminals:
In the Terminal Id box, type the terminal identification provided by your POS
vendor.
l
In the Merchant Id box, type the Merchant ID (MID) for the account.
l
In the Serial Number Override box, type your API Serial Number.
l
l
In the Password Override box, type your API password. Type your API password
again in the Password Verify box.
Click OK.
5. From the Settlement Method list of the POSitouch Connection window, select Online
Settlement (default) or Offline Settlement.
6. In the Acceptable Errors box, type the Primary code for each acceptable error message.
By default, no error codes are entered. Refer to Appendix A in the UTG Reference Guide
for a list of UTG error codes.
7. Click OK.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
19
Chapter 4 - POSibridge Configuration
Adding the UTG Connection
Adding the UTG Connection
To add the UTG connection, perform the following steps:
1. In the Option area of the POSibridge TuneUp window, click Add, and then select UTG
Connection.
2. In the UTGv2 Connection window, type the following information:
l
l
l
l
In the Task Description box, type a descriptive name for the connection.
In the UTG Address box, type the IP address of the customer’s configured UTG
thread that will listen for transaction data from POSibridge.
In the UTG Port ($ for hex) box, type the port number defined by the Interface
Vendor System. The default port is 17476 ($4444 hex).
In the Encryption Passphrase (if any) box, type the passphrase entered in the UTG
thread that will listen for transaction data, if one was entered. Type the passphrase
again in the Verify Password box.
Requirement: If you use an Encryption Passphrase with POSibridge,
you must configure 4Go and POSibridge to use separate TCP/IP threads for
UTG communication. 4Go SafeSwipe and POSibridge cannot share a single
TCP/IP thread to communicate with the UTG because 4Go CANNOT use an
encryption passphrase.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
20
POSibridge Technical Installation Guide
l
l
In the Authorization Connection Timeout box, type the number of seconds the UTG
will wait before returning a failed authorization.
In the Settlement Connection Timeout box, type the number of seconds the UTG will
wait before returning a failed settlement.
Use of a passphrase and the phrase must be the same for POSibridge and
UTG.
3. Click OK.
4. In the Option area of the POSibridge TuneUp window, select the UTG connection and then
click the Advanced tab.
5. On the Advanced tab of the POSibridge TuneUp window, perform the following tasks:
l
l
l
l
In the Worker Threads box, type the number of processing threads for use by
POSibridge. The default is 4.
(Optional) In the Memory Monitor area, select the Enabled box to activate
automated memory usage reporting.
In the Frequency list, select a memory reporting interval option.
In the Destination box, type the IP or e-mail address of the memory reports
recipient.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
21
Chapter 4 - POSibridge Configuration
Adding the UTG Connection
6. Click Trace Configuration and adjust the following settings:
l
In the Directory box, type the directory path where the transaction files will be
placed. The directory path must be a local drive, not a UNC path.
l
In the Max Files box, type the maximum number of trace files that can be saved.
l
In the Blocks box, type or select the amount of trace to save to memory.
l
In the Bytes Each box, type the amount of trace to save in each file.
l
l
l
l
(Optional) In the Suffix field, type up to two characters to place in front of the trace
file names for ease of locating.
(Optional) Select the High Capacity box to enable additional configuration options.
In the Files per Zip box, type or select the number of trace files to add to
compressed (*.zip) folders.
In the Days Cutoff box, type or select the number of days to store the trace files, up
to 120 days.
7. Click OK.
Tip: For additional information about the UTG, see the UTG Technical
Reference Guide.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
22
POSibridge Technical Installation Guide
Adding Mail Notifications
To add mail notifications, perform the following steps:
1. In the POSibridge TuneUp window, click the Options tab.
2. In the Option area, click Add and then select Notification.
3. In the Mail Notification window, type the following information:
l
l
l
l
l
l
In the Mail Server Name box, type the name of the SMTP server the customer uses
to send e-mail.
In the Port ($ for hex) box, type the TCP port the SMTP server uses to send outbound
mail to the server. The default port is 25.
In the Source Domain field, type the domain name that services the mail server.
In the Alert Recipients box, type the complete e-mail addresses of all users who
should be informed of errors within the system that may cause severe problems.
Use commas or semicolons to separate addresses.
In the Status Recipients box, type the complete e-mail addresses of all users who
should be informed of non-urgent issues and standard operating status. Use
commas or semicolons to separate addresses.
Click OK.
4. Click Save on the POSibridge TuneUp window to save the configurations and close
POSibridge TuneUp.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
23
Chapter 5 - POSitouch System Configuration
In order to connect POSitouch and the UTG, you must modify two initialization files as well as
settings in POSitouch Back Office and the Universal Transaction Gateway (UTG) to reference
POSibridge. See the Shift4 Universal Transaction Gateway Technical Reference Guide for
additional information about the UTG.
Chapter Topics:
Modifying 4Go™ in the UTG TuneUp
Editing POSitouch Back Office
Editing TRAVSERV.ini
Editing SPCWIN.ini
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
24
POSibridge Technical Installation Guide
Modifying 4Go in the UTG TuneUp
The Api Interfaces create connections from the UTG to POSitouch so that transactions can flow
back and forth. To configure Api Interfaces, perform the following steps:
1. Open UTG TuneUp:
l
l
Click TuneUp on the menu bar in UTG Standalone, or
Select Programs > Shift4 Corporation > Universal Transaction Gateway > UTG (v2)
TuneUp from the Windows® Start menu.
2. In the UTG TuneUp window, click the Api Interfaces tab.
3. In Interface area of the API Interfaces tab, click Add, and then select TCP/IP.
4. In the Task Description box of the TCP/IP API window, type a name to identify the
interface such as 4Go_TcpHost, and then click Clients.
5. In the Edit Client IP List window, click Add.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
25
Chapter 5 - POSitouch System Configuration
Modifying 4Go in the UTG TuneUp
6. In the Add Client IP Address window, do the following for every workstation or server
running 4Go:
l
l
In the Remote IP Address box, type the IP address of the workstation or server
running 4Go.
In the Interface Type box, select 4Go if you are adding a workstation or 4Go and
Secure POS if you are adding a server.
7. In the TCP/IP API window, do the following:
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
26
POSibridge Technical Installation Guide
l
l
l
In the Host Address box, select the IP address of the machine.
In the Port ($ for hex) box, type the port number that matches the port defined in
the UTG Connection of the POSibridge TuneUp. See Adding the UTG Connection for
additional details.
In the Encryption Passphrase (if any) box, type the passphrase entered in the UTG
thread that will listen for transaction data, if one was entered. Type the passphrase
again in the Verify Passphrase box if applicable.
Requirement: If you use an Encryption Passphrase with POSibridge,
you must configure 4Go and POSibridge to use separate TCP/IP threads for
UTG communication. 4Go SafeSwipe and POSibridge cannot share a single
TCP/IP thread to communicate with the UTG because 4Go CANNOT use an
encryption passphrase.
l
(Optional) Select Bin Management to enable BIN (Bank ID Number) management.
l
If Bin Management is enabled, type an amount in the Floor Limit box.
l
Click OK.
8. In the UTG TuneUp window, click the 4Go tab and do the following:
l
Select the Enabled box.
l
In the Broadcast Addresses area, select the address of the client network.
l
In the Host Address list, select the IP address of the machine.
l
In the Port ($ for hex) box, type 17504.
9. Click Save.
Tip: For additional information about the UTG, refer to the UTG Technical
Reference Guide.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
27
Chapter 5 - POSitouch System Configuration
Editing TRANSERV.ini
Editing TRANSERV.ini
In order to connect POSitouch and the UTG, you must modify transerv.ini. This file is located
in the POSitouch installation folder, which is typically labeled SC. If you are unable to locate
the POSitouch folder, click Start > Search and perform a Windows system-wide search. To edit
the TRANSERV.ini file, perform the following steps:
1. Locate TRANSERV.ini in the POSitouch folder on the drive to which POSitouch is installed
and open it with a text editor.
2. Verify that the file contains all of the information shown below.
; **********************************
; TRANSERV.INI Was Created on
; 12-24-2000 23:38:52
; By AutoConfig util Ver 1.0 Rev 0
; ***********************************
[Transerv]
NetworkInterface=YES
AtomInterface=NO
FileInterfaceOLD=NO
FileInterface=YES
PORT1=COM1:2400,N,8,1
[Network]
TCP/IP=YES
Spcwin=10.0.2.61
ListenSpcwinPort=5002
ConnectSpcwinPort=5003
3. If the file is missing sections or parameters, type them directly into the file.
4. In the TRANSERV.ini file, verify the following settings:
l
NetworkInterface=YES
l
TCP/IP=YES
5. Change the value of Spcwin to match the IP address listed in the Continuous Connection
box of the POSitouch Connection window.
6. Change the value of ListenSpcwinPort to match the port listed in the Continuous
Connection box of the POSitouch Connection window.
7. Change the value of ConnectSpcwinPort to match the port listed in the Listen
Connection box of the POSitouch Connection window.
8. Save the settings and close the text editor.
Tip: See Adding a POSitouch Connection for additional information about
the POSitouch Connection window. The POSitouch Connection window of
the POSibridge TuneUp contains the IP addresses and ports for the
Continuous and Listen Connections.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
28
POSibridge Technical Installation Guide
Editing SPCWIN.ini
In order to connect POSitouch and the UTG, you must modify the spcwin.ini file. This file is
located in the POSitouch installation folder, which is typically labeled SC. If you are unable to
locate the POSitouch folder, click Start > Search and perform a Windows system-wide search.
To edit the SPCWIN.ini file, perform the following steps:
1. Open SPCWIN.ini with a text editor.
2. Verify that the file contains all of the information listed in the file. If the file is missing
sections or parameters, type them directly into the file.
[SpcWin]
AuxAutoDetect=YES
AuxDetectDelay=10
VirtualOut=NO
Key=PARALLEL
FullScreen=TRUE
CC_debug=YES
CC_SocketClose=YES
WindowsMessagePump=YES
[Network]
TCP/IP=YES
Spcwin=10.0.2.61
BackupServer=10.0.2.67
TranservChannel1=10.0.2.61
ListenTranservChannel1Port=5002
ConnectTranservChannel1Port=5003
Device1=10.0.2.67
Device2=10.0.2.60
Device3=10.0.2.32
[XML]
XmlInPath=c:\sc\xml_in
3. In the SPCWIN.ini file, verify TCP/IP=YES.
4. Change the values of Spcwin and TranservChannel1 to match the IP address listed in
the Listen Connection box of the POSitouch Connection window.
5. Change the value of ConnectTranservChannel1Port to match the port listed in the
Listen Connection box of the POSitouch Connection window.
6. Change the value of ListenTranservChannel1Port to match the port listed in the
Continuous Connection box of the POSitouch Connection window.
7. Save the settings and close the text editor.
Tip: See Adding a POSitouch Connection for additional information about
the POSitouch Connection window.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
29
Chapter 5 - POSitouch System Configuration
POSitouch Back Office
POSitouch Back Office
To modify the credit card type settings in POSitouch Back Office, perform the following steps:
1. If you have not already done so, open SpcWin by clicking Start > Programs > POSitouch
> SpcWin.
2. In SpcWin, click
Office.
next to SWITCH TO BACK OFFICE SYSTEM to open POSitouch Back
3. Click Setup > Credit Cards > Credit Card Types.
4. In the Credit Cards: Setup Credit Card Types window, select 1- TRNSRV 1 in the Channel
column for every Payment Type row.
5. Click Save.
In order to access the correct section of POSitouch Back Office, you must
go through the SpcWin interface. Do not open Back Office through the
Windows Start menu as it opens a different program.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
30
POSibridge Technical Installation Guide
Configuring Gift Cards
In order to perform gift card transactions with POSitouch, you must set up your system with
the appropriate licenses and configurations to support gift card functionality. Shift4 does not
provide support for POSitouch gift card configuration or licensing; you must contact your
POSitouch vendor directly for further instructions.
POSibridge fully supports partial authorization for standard gift cards only.
Branded gift cards such as those offered by American Express or Visa, do
not support partial authorizations due to the way that POSitouch handles
their tenders.
If you have the necessary licenses and configurations required for performing gift card
transactions, configure the gift card form of payment by performing the following steps:
1. If you have not already done so, open SpcWin by clicking Start > Programs > POSitouch
> SpcWin.
2. In SpcWin, click
Office.
next to SWITCH TO BACK OFFICE SYSTEM to open POSitouch Back
3. Click Setup > Credit Cards > Forms Of Payment.
4. In the Credit Cards: Forms of Payment window, select Authorization Required and Draft
Capture Allowed in the Form of Payment row that applies to gift cards (GIFT/CAM/F in the
following example).
5. Click Ok.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
31
Chapter 6 - POSibridge Interface
The POSibridge interface displays detailed information and real-time summaries of running
tasks. The default tasks are checked in the Task Explorer and displayed in the status area.
POSibridge also provides access the POSibridge TuneUp and allows you to modify trace file
settings.
Chapter Topics:
Task Explorer
Advanced Options
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
32
POSibridge Technical Installation Guide
Task Explorer
The Task Explorer contains a list of features you can select to monitor status. Any feature listed
may be added or deleted. Select the box of a task to add it to the status area. When you add a
new task, the display in the status area changes to show the current status of only the new
task. Click At-A-Glance to return to the full status.
Default Settings
When you open POSibridge, the At-a-Glance list shows the tasks that are detailed in the status
area by default. These are indicated by check marks next to the task name. All other settings
are additional and may be enabled at any time as recommended by Shift4 or for
troubleshooting. The default tasks are:
l
Alerts: Shows any program issue.
l
Web Supervisor: Shows the status of and connections to the Web server.
l
Web Dispatcher: Shows the status of and connections to the Web server.
l
l
l
POSiCnct: Shows the status of the connection between the POSitouch system and
POSibridge.
UTG Connect: Shows the status of the connection between the UTG and POSibridge
Orphan Events: Shows events that are dispatched without a target for troubleshooting
purposes.
Requirement: Click Refresh to reset the At-a-Glance list to the default
settings.
Additional Settings
The following optional settings are available for review and monitoring but cannot be saved to
the default settings. Clicking Refresh removes any additional settings that you selected:
l
Activity: Displays the activity log which contains information such as update sessions.
l
Bandwidth: This setting is unavailable.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
33
Chapter 6 - POSibridge Interface
Task Explorer
l
Connector Sessions: Shows a list of active connection threads in the POSibridge.
l
Events: Monitors thread activity for Workers and Tasks.
l
Listeners: Shows the global pool of listeners.
l
l
l
l
l
Mail: Shows the status of the mail subsystem within the POSibridge, including queued
messages.
Memory Manager: Shows memory settings by thread or detailed by thread.
Memory Statistics: Shows how memory is allocated. This setting is used for debugging the
UTG.
Summary: Shows the fastest, slowest, and most recent transactions processed.
Trace: Shows complete transaction details, including full card numbers, for debugging
purposes.
Tip: For additional information about Trace and Trace Settings, see
Advanced Options.
l
Web Sessions: Shows the status of and connections to the Web server.
l
SSL Web Sessions: Shows the status of and connections to the Web server.
l
l
WebServer: Shows all active connections to the WebServer, including Web and SSL Web
Sessions.
Legacy: Shows all of the essential activities in a single page layout.
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
34
POSibridge Technical Installation Guide
Advanced Options
Filter
The Filter option displays a column of modules. These modules represent each separate section
in the UTG and are used to select and clear modules operating inside the UTG. When any
combination of modules is selected, the activity written to the trace by the selected modules is
displayed in the large center section and can be scrolled back and forth for review.
To activate a filter, perform the following steps:
1. On the Default POSibridge window, click Advanced > Filter.
2. Double-click the name of the modules you want to display.
l
You can also right-click anywhere in the module list and turn all modules on or off.
3. Select the Polling Active box to refresh the center section with the activity from the
checked modules according to the frequency selected.
Trace Settings
Trace files contain information about most major functions of the UTG including configuration
parameters, connection attempts, and exceptions. They are typically stored in the root
directory of the C drive. The naming convention of trace files is Uxxxx.trc, where “xxxx” is a
sequential four-digit number. A separate trace file is created every time the UTG restarts with
the oldest trace file deleted, keeping the number of files limited to set parameters. For more
information about trace settings see Adding the UTG Connection.
To change trace options, click Advanced and then select any of the options described below:
l
l
l
Rollover: Closes the current “Unnnn.trc” file and starts a new one.
Verbose: Displays additional details in the trace files without compromising PCI DSS
regulations.
Clear: Erases the memory contents of the trace (not the disk-based trace).
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
35
APPENDIX A - Revision History
This revision history provides a chronological record of changes made to the POSibridge
Technical Installation Guide. It does not include layout and formatting changes or changes
which do not affect users. For support with any Shift4 product, contact the Shift4 Support
department at (702) 579-2480, option 2. Send any comments or suggestions about the
Technical Installation Guide to techdocs@shift4.com.
Revision
Date
1/26/2010
1/26/2010
Affected Section
Description
Changed "TuneUp" to
"POSibridge TuneUp" to match
window name and distinguish
from "UTG TuneUp"
All
Chapter 2
Removed "Data Security
Standards" section (including
PCI DSS and PA-DSS tables).
POSibridge is implemented in
conjunction with 4Go and the
UTG, which provide the data
security for POSibridge
Updated the Security Best
Practices
1/26/2010
Chapter 3
Updated the instructions for
installing POSibridge
1/26/2010
Chapter 4
Added example of POSibridge
TuneUp window
1/26/2010
Chapter 5
Updated the instructions for
modifying 4Go in UTG TuneUp
for POSibridge
1/26/2010
Chapter 6
Updated the example Task
Explorer screen
Chapter 7
Removed list of UTG error
messages and replaced it with a
link to the UTG Reference Guide
so that readers always have
access to the most up-to-date
list of messages
1/26/2010
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA
36
POSibridge Technical Installation Guide
© 2010 Shift4 Corporation. All rights reserved.
External Use NDA