Table 5-2 Miscellaneous Configuration Parameters
|
|
|
|
The BLM’s listening port. The BLM runs on HTTP/SOAP. The default value is the default SOAP port, 80.
|
|
BLM.wlesadmin. adminPolicyRoot
|
The admin policy root is created when you install the Administration Server. If, after installation, you make any change to the tree structure, you need to update this parameter as well. You do not need to change this parameter unless you are making changes to the security policies that protect the administration resources.
|
|
BLM.wlesadmin. defaultdirectory
|
Used by BLM to locate the Administrator user when the user's directory is not provided by the BLM client at the time of making connection. This directory stores the administration server user and user groups that are used to boot the server and BLM API login. By default, admin user IDs are maintained in the asi admin directory and custom identities for application-related users would be stored in a directory other than the asi directory. You do not need to change this unless you are making changes to the default admin policy.
|
|
BLM.wlesadmin. AuditWebserviceURL
|
The URL of the Web Service host to which BLM directs authorization audit events. You do not need to change this parameter unless you have changed the IP address and port on which the Audit Web Service runs.
|
|
BLM.wlesadmin.AuditRetries
|
Number of times the server will try to send audit events to the Audit Web Service before giving up. This must be an integer greater than 0. If the server cannot connect to the Audit Web Service, no exception is thrown, but a debug message will note the failure.
|
|
BLM.wlesadmin.contextsize
|
When the BLM reaches a number of connections equal to the contextsize value, including the connections that have already timed out, the BLM will try to drop the timed-out connections that have not been accessed for a number of seconds equal to or greater than the sessionTimeout value. Set a lower value for more frequent clean-up as compared to default value of 40.
|
|
BLM.wlesadmin. sessionTimeout
|
When the BLM has a number of connections equal to the contextsize value, it will try to drop connections that have not been accessed for a number of seconds equal to or greater than the sessionTimeout value not been accessed for a number of seconds equal to or greater than the sessionTimeout value.
|
|
BLM.wlesadmin. maxCollectionSize
|
The maximum number of entries in one collection. This limits the collection size used by the BLM process when dealing with collections such as collection of users, user groups, subjects, attributes, etc. For example, if you are listing the users in the identity directory user groups, the BLM would retrieve the first 500 users under the user group the first time, but the console would display a part of the 500 users and get the rest as the console user views them using the up and down arrows in the console. If you increase the value of maxCollectionSize , the result set would increase accordingly, thereby loading more users even though you may not list all the users.
As a result the performance is more of a management time latency (administration time) and not a runtime evaluation latency, since the ARME caches the policy and user information locally rather than using the BLM for runtime authorization and role mapping decisions.
If this value is set too large, it will reduce console and BLM performance and increase BLM memory usage.
|
|
BLM.wlesadmin. maxTreeSizeWithResourceNodes
|
The maximum number of app nodes with resource nodes to display in the object tree. This is just a display and fetch restriction; the subsequent 500 resources are fetched as the console user views them with the up and down arrows. If this value is set too large, it will reduce administration console and BLM performance and increase BLM memory usage.
|
|
BLM.wlesadmin. requestThreads
|
The size of the ASI thread pool size that handles client requests. This value should be increased only if the server that hosts the BLM server is able to handle that many threads without maxing out the CPU usage.
|
|
BLM.wlesadmin. masterSocketReadTimeoutMs
|
Timeout for the master socket on which server was reading a request. Determines how long to wait on the sockets with no input before timing out. This is used both to periodically check for a shutdown request, and to allow connections which have given up their thread to be watched and rescheduled.
|
|
BLM.wlesadmin. childSocketReadTimeoutMs
|
Timeout for the child socket on which server was reading a request. Determines how long to wait on the sockets with no input before timing out. This is used both to periodically check for a shutdown request, and to allow connections which have given up their thread to be watched and rescheduled.
|
|