1. Help Reference for Oracle Access Management Consoles
  2. Configuration Help
  3. Settings Help
  4. Common Settings

13.1 Common Settings

Use the Common Settings page to Provide access to configurable settings that are global and common to all OAM Servers in your environment.

Session

In this section, you can configure Session life cycles.

The following table describes the elements in the Session section of the Common Settings page:

Element Description

Session Lifetime (minutes)

Specify the amount of time that a user's authentication session remains active. When the lifetime is reached, the session expires.

  • Default value is 1440 minutes.

  • A value of zero (0) disables this setting.

  • Any value between 0(zero) and 2147483647 is allowed.

Note: An expired session is automatically deleted from the in-memory caches (or database).

Idle Timeout (minutes)

Specify the amount of time that a user's authentication session remains active without accessing any Access Manager protected resources. When the user is idle for a longer period, they are asked to re-authenticate.

  • Default value is 15 minutes.

  • A value of zero (0) disables the setting.

  • Any value between 0(zero) and 2147483647 is allowed.

Note: Timed-out sessions are not deleted from the session manager. Session data could be removed from the memory but will still be available in the persistent store (database). After re-authentication, the same session will be re-activated.

(Management) Maximum Search Results

Specify the maximum number of sessions that can be fetched by default for a session query if the result set is large.

Maximum Number of Sessions per User

Specify the exact number of sessions each user can have at one time. Use this setting to configure multiple session restrictions for all users.

  • Any positive integer is allowed.

  • Specifying the count as 1 (one) activates a special mode. If a user already has a session then he authenticates using another device (thereby creating a new session), then their existing session is deleted. No error is reported and no warning is given.

Note:Too high a number impacts performance and results in a security risk. Oracle recommends less than 20 as a reasonable limit per user. Otherwise there can be performance impact.

Audit Configuration

In this section, you can manage Audit Configuration.

The following table describes the elements in the Audit Configuration section of the Common Settings page:

Element Description

Maximum Directory Size (MB)

Specify the maximum size for the directory that contains audit output files.

For Example:

  • Assuming that the maximum file size is 10, a value of 100 for this parameter implies that the directory allows a maximum of 10 files. Once the maximum directory size is reached, the audit logging stops.

  • A value of 100 specifies a maximum of 10 files if the file size is 10 MB. If the size exceeds this, the creation of audit logs stops.

Maximum File Size (MB)

Specify the maximum size for the audit log file. Once the size of the file reaches the maximum size, a new log file is created.

For Example: Specifying 10 directs file rotation when the file size reaches 10 MB.

Filter Enabled

Check this box to enable event filtering.

Filter Preset

Defines the amount and type of information that is logged when the filter is enabled. Choose any option from the following drop-down menu:

  • All - Captures and records all auditable OAM events.

  • Low - Captures and records a specific set of auditable OAM events.

  • Medium - Captures and records events covered by the Low setting plus a number of other auditable OAM events.

  • None - no OAM events are captured and recorded.

The default value is None.

Note: Events for each filter are fixed in the read-only component_events.xml file. Editing or customizing this file is not supported for Oracle Access Management. Only items that are configured for auditing at the specified filter preset can be audited.

Audit Configuration

Administrators can add, remove, or edit special users using Audit Configuration table. The actions of the users specified in the table are included only when the filter is enabled. All actions of the special users are audited regardless of the filter preset.

Audit Configuration table

This table is displayed when Filter option is enabled.

The following table describes the elements in the Audit Configuration section of the Common Settings page:

Element Description

View

Choose commands from the View menu to control how the columns are displayed:

  • Columns - Click a column header name to quickly show or hide a single column.

Add

Click to add a new row to the table.

Delete

Select a row and click Delete to remove the row.

Users

Add the users whose actions are to be audited.

Default and System Stores

In this section, you can define Default and System Identity Stores.

The following table describes the elements in the Default and System Identity Stores section of the Common Settings page:

Element Description

Default Store

Click the name of the default store to display the configuration page.

System Store

Click the name of the system store to display the configuration page.

Related Topics

Managing Common Services and Certificate Validation in Administrator's Guide for Oracle Access Management.