Administrator settings properties
Modify the Administrator Settings to meet the requirements of your organization.
Accept Client Certificates
-
acceptClientCerts - Specifies whether the LMI accepts SSL client certificates.
Administrator Password
- The LMI administrator password.
Administrator SSH Keys
- Specifies the keys that can be used to authenticate as the administrator user with SSH.
BA Session Timeout
-
baSessionTimeout - The maximum time, in seconds, that a basic authentication header is cached before it is deleted. A value of 0 disables the cache.
Console Log Level
-
consoleLogLevel - The console logging level of the LMI. Valid values are OFF, AUDIT, ERROR, INFO, or WARNING.
Enable TLS Protocols
-
enabledTLS - Specifies which TLS protocols are enabled for the LMI for both incoming and outgoing connections. Valid values are TLSv1, TLSv1.1, TLSv1.2, and TLSv1.3.
Enabled Server Secure Protocols
-
enabledServerProtocols - Specifies which secure protocols the LMI accepts. Valid values are TLS, TLSv1, TLSv1.1, TLSv1.2, and TLSv1.3.
Exclude CSRF Checking
-
excludeCsrfChecking - Specifies the list of users for which CSRF checking is disabled. Regular expressions are accepted and any embedded commas must be escaped with the '\' character. This property is required if client certificate authentication is required to access an LMI web service from a non-browser-based client. For example: cn=testuser\,o=testorg\,c=us
HTTP Port
-
httpPort - The TCP port on which the LMI listens.
HTTP Proxy
-
httpProxy - Specifies the proxy to be used for HTTP communication from the LMI. The format is hostname:port where the port is optional and defaults to 80. For example: proxy.ibm.com:3128
HTTPS Port
-
httpsPort - The SSL port on which the LMI listens.
HTTPS Proxy
-
httpsProxy - Specifies the proxy to be used for HTTPS communication from the LMI. The format is hostname:port where the port is optional and defaults to 443. For example: proxy.ibm.com:3129
JavaScript Version
-
jsVersion - Specifies the language version that is set for the Rhino engine to run JavaScript functions in a Java context for the base components. Changing this value affects the compilation of the included JavaScript functions.
Note: This property does not effect the advanced access control or federation JavaScript usage. See Managing advanced configuration to set the language version for those components.
LMI Access Log Format
-
accessLogFormat - An access log of requests to the management interface can be enabled by setting the LMI Access Log Format parameter. The format of this string must conform to the HTTP access log format for IBM Liberty application server. More details about log format options can be found in the Liberty documentation.
LMI Audit Logging Enabled
-
auditEnabled - Specifies whether LMI audit logging is enabled.
LMI Audit Logging JSON Format Enabled
-
auditJsonFormat - Specifies whether LMI audit events are logged in JSON format (true) or the legacy XML format (false).
LMI Audit Logging Tag
-
auditSyslogTag - Specifies an additional tag to include in LMI audit syslog messages to help filter messages on a remote server.
LMI Audit Verbose Events Enabled
-
auditVerbose - Specifies whether LMI verbose audit events are enabled or not.
LMI Debugging Enabled
-
lmiDebuggingEnabled - Specifies whether LMI debugging is enabled. Enabling debugging might provide extra console messages when accessing the LMI in a browser.
LMI Message Timeout
-
lmiMessageTimeout - Specifies the timeout, in seconds, for notification messages that appear in the LMI. Setting a value of 0 disables the timeout and messages remain until explicitly closed by the user.
Login Screen Header
-
loginHeader - Specifies a customizable header that is displayed when accessing the LMI login page in a browser or logging in over SSH.
Login Screen Message
-
loginMessage - Specifies a customizable message that is displayed when accessing the LMI login page in a browser or logging in via SSH.
Max Heap Size
-
maxHeapSize - The maximum heap size, in megabytes, for the LMI JVM.
Max Pool Size
-
maxPoolSize - The maximum number of connections for the LMI connection pool.
Max Threads
-
maxThreads - The maximum number of threads that handle LMI requests. A value of 0 or less sets it to unlimited.
Maximum Log File Size
-
maxFileSize - The maximum size, in megabytes, that the LMI log file can grow to before it is rolled over. Used with the maximum log files property to control the total maximum size of stored log files.
Maximum Log Files
-
maxFiles - The maximum number of each type of log file to store. Used with the maximum log file size property to control the total maximum size of stored log files.
Maximum Pending Changes Lifetime
-
pendingChangesLifetime - Specifies the maximum lifetime of pending changes, in hours, before they are automatically purged from the system. Setting no value disables automatic purging or pending changes.
Min Heap Size
-
minHeapSize - The minimum heap size, in megabytes, for the LMI JVM.
Min Threads
-
minThreads - The minimum number of threads that handle LMI requests. A value of 0 sets it to the number of hardware threads.
SSH Client Alive Interval
-
sshdClientAliveInterval - The number of seconds that the server waits before sending a null packet to the client. A value of -1 results in the use of the default timeout settings.
SSH Daemon Port
-
sshdPort - The port on which the SSH daemon listens.
Note: If the appliance clustering capability is enabled, all nodes in the cluster must be configured to use the same port for the SSH daemon.
SSH Password Authentication
-
sshdPasswordAuthentication - Specifies whether the SSH daemon allows clients to authenticate by using a password.
Session Cache Purge
-
sessionCachePurge - The time interval, in minutes, between session cache purges. The purge cleans up any stale session entries. Valid values range from 0 to 720.
Session Inactivity Timeout
-
sessionInactivityTimeout - The time interval, in minutes, that a session can remain idle before it is deleted. A value of -1 disables the timeout. Valid values range from -1 to 720.
Session Timeout
-
sessionTimeout - The maximum time, in minutes, that a session can exist before it is deleted. Valid values range from 0 to 720.
Swap File Size
-
swapFileSize - The amount of allocated swap space in megabytes. Ensure that enough space exists on the active partition to store the swap file. Otherwise an error is logged in the system log and the default amount of swap space is used.
Valid Verify Domains
-
validVerifyDomains - A space separated list of valid domains for IBM Verify. These domains are used by the IBM Verify wizard to ensure that only valid hostnames are used.
Validate Client Certificate Identity
-
validateClientCertIdentity - Specifies whether the subject DN from a client certificate is validated against the LMI user registry.