[server] stanza
- allow-shift-jis-chars
- allow-unauth-ba-supply
Use the allow-unauth-ba-supply stanza entry to control whether unauthenticated users can access junctions that were created with the -b supply option. - allow-unsolicited-logins
Use the allow-unsolicited-logins stanza entry to control whether WebSEAL accepts unsolicited login requests. - auth-challenge-type
Use the auth-challenge-type stanza entry to specify a comma-separated list of authentication types that WebSEAL can use to challenge a client for authentication information. - cache-host-header
Use the cache-host-header stanza entry to control whether WebSEAL caches the host and protocol of the original request. - capitalize-content-length
Use the capitalize-content-length stanza entry to control whether WebSEAL capitalizes the first letters in the name of the HTTP content-length header. - clear-cookie-jar-on-reauth
Use the clear-cookie-jar-on-reauth entry to define whether to clear cookie jar when a new credential is added to a session. - client-connect-timeout
Use the client-connect-timeout stanza entry to specify the timeout in seconds for a client connection. - chunk-responses
- concurrent-session-threads-hard-limit
Use the concurrent-session-threads-hard-limit stanza entry to specify the maximum number of concurrent threads that a single user session can use before WebSEAL stops processing requests for the session. - concurrent-session-threads-soft-limit
Use the concurrent-session-threads-soft-limit stanza entry to specify the maximum number of concurrent threads that a single user session can use before WebSEAL generates warning messages. - connection-request-limit
Use the connection-request-limit stanza entry to specify the maximum number of requests that WebSEAL processes on a single persistent connection. - cope-with-pipelined-request
Use the cope-with-pipelined-request stanza entry to control whether WebSEAL closes the connection and notifies the browser if it detects pipelined requests. - decode-query
Use the decode-query stanza entry to validate the query string in requests according to the utf8-qstring-support-enabled entry. - disable-advanced-filtering
Use the disable-advanced-filtering stanza entry to control whether encoded URLs are filtered. - disable-timeout-reduction
Use the disable-timeout-reduction stanza entry to control whether WebSEAL reduces the timeout duration of threads to help control the number of active worker threads. - double-byte-encoding
Use the double-byte-encoding stanza entry to control whether WebSEAL treats all encoded characters in URLs as Unicode encoded. - dynurl-allow-large-posts
Use the dynurl-allow-large-posts stanza entry to control whether WebSEAL accepts POST requests with a body larger than the number of bytes specified by the request-body-max-read entry. - dynurl-map
Use the dynurl-map stanza entry to specify the file that contains mappings for URLs to protected objects. - enable-http2
Use the enable-http2 stanza entry to enable HTTP/2 support. - enable-IE6-2GB-downloads
Use the enable-IE6-2GB-downloads stanza entry to disable the HTTP Keep-Alives Enabled option for responses that are sent back to Internet Explorer, version 6, client browsers. This configuration allows clients that are using Microsoft Internet Explorer, version 6.0 to download files greater than 2 GB, but less than 4 GB. - filter-nonhtml-as-xhtml
Use the filter-nonhtml-as-xhtml stanza entry to enable tag-based filtering of static URLs for new MIME types added to the [filter-content-types] stanza. - follow-redirects-for
WebSEAL can examine 302 responses and process the redirects internally if they are destined for the current server. This configuration entry controls the requests for which this redirect function is enabled. - force-tag-value-prefix
Use the force-tag-value-prefix stanza entry to control whether WebSEAL prefixes each HTTP-Tag-Value attribute that is set on the junction object with "tagvalue_" before it is added to the credential. - http
- http2-max-connections
Use the http2-max-connections stanza entry to define the max number of connections allowed when HTTP/2 support is enabled. - http2-max-concurrent-streams
Use the http2-max-concurrent-streams stanza entry to set the maximum number of simultaneous multiplexed streams WebSEAL will accept per HTTP/2 network connection. - http2-max-connection-duration
Use the http2-max-connection-duration stanza entry to set the maximum duration in seconds for an HTTP/2 connection. - http2-header-table-size
Use the http2-header-table-size stanza entry to define the max header table size for an HTTP/2 network connection. - http2-max-header-list-size
Use the http2-max-header-list-size stanza entry to define the maximum size of headers that can be sent in a request on an HTTP/2 stream. - http2-idle-timeout
Use the http2-idle-timeout stanza entry to set the amount of time an HTTP/2 connection can be idle (not processing any requests). - http2-initial-window-size
Use the http2-initial-window-size stanza entry to define the maximum number of unacknowledged bytes WebSEAL can accept per active multiplexed stream. - http2-max-frame-size
Use the http2-max-frame-size stanza entry to define the maximum size of the body of a single HTTP/2 protocol frame sent over the HTTP/2 network connection. - http-method-disabled-local
- http-method-disabled-remote
- http-port
- https
- https-port
- ignore-missing-last-chunk
- intra-connection-timeout
- io-buffer-size
- ip-support-level
- ipv6-support
- late-lockout-notification
- max-client-read
- max-file-cat-command-length
- maximum-followed-redirects
Sets the maximum number of consecutive 302 redirects that are followed internally before WebSEAL concedes and passes the response back to the client. - max-idle-persistent-connections
- max-idle-persistent-connections-threshold
Use this entry to set the warning threshold for the number of idle client persistent connections. - network-interface
- persistent-con-timeout
- pre-800-compatible-tokens
In IBM Security Access Manager for Web version 8.0, the cipher that WebSEAL uses to encode tokens was changed. Use the pre-800-compatible-tokens stanza entry to enable compatibility with earlier versions of WebSEAL. - preserve-base-href
- preserve-base-href2
- preserve-p3p-policy
- process-root-requests
- redirect-using-relative
- reject-invalid-host-header
- reject-request-transfer-encodings
- request-body-max-read
- request-max-cache
- send-header-ba-first
- send-header-spnego-first
- server-name
- slash-before-query-on-redirect
- strip-www-authenticate-headers
- suppress-backend-server-identity
- suppress-dynurl-parsing-of-posts
- suppress-server-identity
- tag-value-missing-attr-tag
- use-existing-username-macro-in-custom-redirects
- use-http-only-cookies
- utf8-form-support-enabled
- utf8-qstring-support-enabled
- utf8-url-support-enabled
- validate-query-as-ga
- web-host-name
- web-http-port
- web-http-protocol
- web-https-port
- web-https-protocol
- worker-threads
Parent topic: Stanza reference