Hub software requirements and permissions

Software requirements

The following technologies are supported for use with the software:

Operating system

Version	Web Server	Message Broker
Windows Server 2016 Datacenter	ü	ü
Windows Server 2019	ü	ü

Where the Blue Prism components are installed on a 64-bit operating system, it will run as a 32-bit application.

Microsoft SQL Server

The following Microsoft SQL Server versions are supported for locating the Blue Prism component databases:

Version	Express	Standard	Enterprise
SQL Server 2016	ü	ü	ü
SQL Server 2017	ü	ü	ü
SQL Server 2019 (64-bit)	ü	ü	ü

SQL Express is only appropriate for non-production environments, such as for the purposes of proof of concept exercises.

The following are also supported:

Azure SQL Database.
SQL Server on Azure Virtual Machines.
Azure SQL Managed Instance, however, the databases must be created before the installation.

Message Broker server

The following software is required on the Message Broker server:

RabbitMQ 3.8.16 to 3.9.8, or 3.11.9 to 3.11.10
Erlang/OTP 24.x or 25.x – The version of Erlang that you require is dependent on the RabbitMQ version you intend to use.

For appropriate Erlang/OTP support, see RabbitMQ Erlang Version Requirements.

For appropriate operating system support, see https://www.rabbitmq.com/platforms.html.

See Install the Message Broker server for more information.

Blue Prism aims to fully test new RabbitMQ versions against the latest Hub version within two months of the general availability of that software. If any subsequent Hub development is required to support a new RabbitMQ version, any updates will be incorporated into a future release of Hub as determined by our release cycle.

Web server

The following software is required on the Web server:

.NET Framework 4.7.2 – Installed by default on Windows Server 2019.
IIS 10.0
.NET Core Windows Server Hosting 3.1.11 or later versions of 3.1
.NET Core Windows Desktop Runtime 3.1.11 or later versions of 3.1
Visual C++ Redistributable 2012 (x64)

See Install and configure the web server – Hub for more information.

Blue Prism

SS&C | Blue Prism® Hub itself does not require Blue Prism to be available. However, some of the components or plugins with Hub do require Blue Prism. These are:

Authentication Server – Requires Blue Prism 7.0.0 or later.
Blue Prism® Automation Lifecycle Management (ALM) – Requires Blue Prism 6.4.0 or later.
Control Room – Requires Blue Prism 7.0.0 or later.
Blue Prism® Decision – Requires Blue Prism 6.4.0 or later.
SS&C | Blue Prism® Interact – Requires Blue Prism 6.4.0 or later.

Minimum SQL permissions

The minimum SQL permissions for a user required to connect to the database during the installation process must have the appropriate privileges to create or configure the databases from within the product, therefore an appropriate administrator account will need to be used when running the installation process:

Create Database: dbcreator (server role) or sysadmin (server role)
Configure Database: sysadmin (server role) or db_owner (database role)

A database user required to connect to the databases during normal operation must have the minimum SQL permissions to access the Hub and Authentication Server databases. The required permissions are:

db_datareader
db_datawriter

When using Windows Authentication, the account set as the Identity of the Application Pools requires access to the Blue Prism database for Hub Control Room and Interact purposes. The account must have the minimum SQL permissions to access the Blue Prism database. The required permissions are:

db_datareader
db_datawriter

When using SQL Authentication, the same requirements apply as for Windows Authentication, but for the SQL account specified in the installation parameters.

For more information, see Default application information below.

Default application information

The information below shows the applications that are created by the installation using the default values. All applications should have full access to the BluePrismCloud_Data_Protection certificate located in the certificate store on the local machine. In addition:

IIS APPPOOL\ Blue Prism – Authentication Server and IIS APPPOOL\ Blue Prism – SignalR will also require access to the BluePrismCloud_IMS_JWT certificate.
IIS APPPOOL\ Blue Prism – Hub will also require access to the BPC_SQL_CERTIFICATE certificate.

If using Windows Authentication to authenticate with SQL Server, we recommend that a dedicated Active Directory user is assigned to the Identity of the IIS Application Pool (the default names are shown in the tables below). You must ensure that this Application Pool user is set to use the Region English (United States). To do this, open Control Panel > Clock and Region > Region, set the Format to English (United States) for the Application Pool user.

Hub websites

Application name	Example service account name for SQL Windows Authentication	SQL Server permissions required during installation	Database permissions required during application running	Default database name
Blue Prism ‑ Authentication Server	IIS APPPOOL\ Blue Prism – Authentication Server	dbcreator / sysadmin	db_datawriter / db_datareader	AuthenticationServerDB
Blue Prism ‑ Hub	IIS APPPOOL\ Blue Prism – Hub	dbcreator / sysadmin	For the first login and initial configuration: dbcreator / sysadmin Subsequent logins: db_datawriter / db_datareader	HubDB
Blue Prism ‑ Email Service	IIS APPPOOL\ Blue Prism – Email Service	dbcreator / sysadmin	db_datawriter / db_datareader	EmailServiceDB
Blue Prism ‑ Audit Service	IIS APPPOOL\ Blue Prism – Audit Service	dbcreator / sysadmin	db_datawriter / db_datareader	AuditDB
Blue Prism ‑ File Service	IIS APPPOOL\ Blue Prism – File Service	dbcreator / sysadmin	db_datawriter / db_datareader	FileServiceDB
Blue Prism - Notification Center	IIS APPPOOL\ Blue Prism – Notification Center	dbcreator / sysadmin	db_datawriter / db_datareader	NotificationCenterDB
Blue Prism - License Manager	IIS APPPOOL\ Blue Prism – License Manager	dbcreator / sysadmin	db_owner Or db_datawriter / db_datareader with execute permissions (see below)	LicenseManagerDB
Blue Prism - SignalR	IIS APPPOOL\ Blue Prism – SignalR	N/A	N/A	N/A

When the application is running, the License Manager requires appropriate permissions to execute stored procedures. If you do not want to use db_owner as the permission level, you can use db_datawriter/db_datareader and run the following SQL script to provide the required level to that user:

Copy

USE [LicenseManagerDB]
GRANT EXECUTE to "IIS APPPOOL\Blue Prism - License Manager"

Where:

[LicenseManagerDB] is the database name for License manager.
"IIS APPPOOL\Blue Prism - License Manager" is the username.

Hub services

Application name	Example service account name for SQL Windows Authentication	SQL Server permissions required during installation	Database permissions required during application running	Default database name
Blue Prism ‑ Audit Service Listener	NT AUTHORITY\SYSTEM	dbcreator / sysadmin	db_datawriter / db_datareader	AuditDB
Blue Prism ‑ Log Service	NT AUTHORITY\SYSTEM	N/A	N/A	N/A

	Click here to see the documentation for all Blue Prism products.
© 2024 Blue Prism Limited \| Last updated on 06 Mar 2024