This is a quick checklist for setting up StarterSTS. You can also watch video which walks you through the initial setup process.
This document assumes that you have already correctly set up your operating system and IIS 7.x (StarterSTS 1.0 also works on IIS 6 - see the remarks at the end of this document). Furthermore IIS needs to be configured with an SSL certificate. This can be a self-generated certificate, but it must be trusted by your browser.
You also need to install the Windows Identity Foundation (and maybe the SDK if this is a dev box).
The first thing that you should configure are the certifcates that are used by StarterSTS. This is done in configuration/certificates.config You have to provide the path to certificate store for the SSL certificate and the token signing certificate (which can be the same as the SSL certificate).
It is easiest to reference the certificate by thumbprint. To find out the thumbprint, use the certificate MMC snap-in to navigate to the SSL certificate - open the properties and copy the thumbprint value to the clipboard. Then use that value in certificates.config for the certificate called SSL. In most cases you can use the same thumbprint value also for the SigningCertificate certificate. Of course you can also use two separate certificates.
Don't use the same thumbprint for the BridgedSigningCertificate certificate. This should be a separate certificate. Since this is used for the OpenId bridge feature only, this does not need to be setup now.
In any case, your IIS application account needs read access to the certificate's private key. You can use the certificate MMC snap-in to configure that - simply navigate to the certificate and right click All Tasks / Manage Private Key to set the ACL.
The next step is to connect StarterSTS to your user data. There are certain routes you can take from here.
In this case you have to create a user database first. Use the aspnet_regsql tool from the .NET Framework SDK for this purpose. After that open the /configuration/connectionString.config file and make sure the ProviderDB connection string points to your provider database.
You can now populate your database with users, roles and profile information using any compatible tool. You can e.g. use the IIS manager (navigate to your StarterSTS application first).
In that case you only need to adjust the connection string to the database in /configuration/connectionString.config.
In this case you need to adjust the provider configuration in web.config. Here you'll find more information about provider compatibility.
Now launch StarterSTS. Try to access the federation metadata document, try to login and edit the profile. Also try to retrieve an information card. This should all work now - if not verify the above steps or contact me via the codeplex forum.
StarterSTS is built and tested on IIS7.x. Nevertheless it should work on IIS6 as well. Some notes: