Configuring security
Procedure
- Go to Manage > Configuration > System, and select Security.
-
Specify values, as required, for the following settings:
Property
Setting Result Allowlist for cloud object storage headers list of S3 Use this parameter to define a set of allowable S3 headers, separated by commas, that can be used when configuring an S3 storage connection.
For more information, see step 6 in Creating a storage connection in Cognos Analytics.
HTTP Strict Transport expiration period (days) number The HTTP Strict Transport Security Max Age setting in days. Login redirect URL URL The url of a page that the user is redirected to when they sign in to Cognos Analytics.
Tip: You can use this parameter when integrating with your specific SSO environment.Logout redirect URL URL The url of a page that the user is redirected to when they sign out from Cognos Analytics.
Tip: You can use this parameter when integrating with your specific SSO environment.Login parameters allowed in URL comma-separated list of parameter names Use this parameter to enable passing CAM namespace login parameters.
Example
Your company wants to deploy the following user login syntax:
http://server:port/bi/v1/disp?CAM_action=logonAs&CAMNamespace=NamespaceName&CAMUsername=UserID&CAMPassword=PasswordAs Administrator, you would enter the following in the Login parameters allowed in URL field:
CAMNamespace,CAMUsername,CAMPasswordAllowlist email domains list of domains Use this parameter to define a list of allowable email domains. When the parameter is set, emails can be sent only to the specified email domains.
The value is a comma-separated list of domains, for example: ibm.com, domain.com, mail.com. If no value is specified, any email domain can be sent a message.
Token Login Signing Secret alphanumeric string Specify the signing secret for tokens generated for login. - Click OK.