Anonymous login token authentication parameters
The anonymous login by token authentication feature is enabled using the Allowed by token authentication only option. This topic describes all of the available token configuration parameters stored in the sametime.ini file.
| Settings in the sametime.ini file | Section | Description |
|---|---|---|
| ANON_AUTH_TOKEN_SECRET_PATH | Anon | Full path to a text file containing the encrypted
token secret string. This mandatory flag is filled out by the Sametime® installation and
upgrade utility. Example values: Microsoft Windows: C:\Lotus\Domino\anonTokenSecret.txt Linux: /lotus/domino/data/anonTokenSecret.txt |
| ANON_AUTH_TOKEN_CLEANUP_INTERVAL _IN_MINUTES | Anon | Token expiration interval in minutes. This is an optional setting. If this setting is not used, the default token expiration value of 60 is applied. |
| ANON_AUTH_TOKEN_HOW_MANY_LOGINS _ALLOWED | Anon | The number of log-in attempts allowed for a particular token. This is an optional setting. If this setting is not used, the default number of attempts, 1, is applied. |
| ANON_AUTH_TOKEN_KEY1 | Anon | File name of a first half of the secret token key. This optional setting contains the file name only. If it is not used, the default key file name is sharedEncKey1.txt. |
| ANON_AUTH_TOKEN_KEY2 | Anon | File name of a second half of the secret token key. This optional setting contains the file name only. If it is not used, the default key file name is sharedEncKey2.txt. |
| VPS_ALLOWED_LOGIN_TYPES | Config | Allowed login types list. This is an optional
setting. Only if the VPS_ALLOWED_LOGIN_TYPES setting
is used in the sametime.ini file, an anonymous by
token login type (1FAA) is added to the allowed login types list.
The values in the list must be delimited by commas. VPS_ALLOWED_LOGIN_TYPES=...,1FAA If this setting does not appear in the sametime.ini file, all clients are allowed to log in to the IBM® Sametime Community Server and there is no need to enable anonymous authentication by token. |
| ST_JAVA_CLASS_PATH | Config | List of the classpath JVM values for all Sametime Community Server Java components. This mandatory flag should include the anonTokenAuth.jar full path. The jar contains APIs for anonymous token generating and verifying. The same APIs are used over all Sametime components that implement the anonymous login by token feature. The full path value of anonTokenAuth.jar is entered by the Sametime installation and upgrade utility. |
After updating the configuration flags listed in the Anonymous login token authentication parameters table, restart the Sametime Community Server so the changes can take effect.