agentService.properties revision f58c87ece2202b8f85310d8885c7e39a7f435c09
c80e152862cc3e3207dc837fde7116bd4c0e4b9dTinderbox User# DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
8d1b3ceb4d491ce32572f1702f37ed585eede993Evan Hunt# Copyright (c) 2008 Sun Microsystems Inc. All Rights Reserved
d77cb075aae5595e460e3299bfc1e8ea5d42b560Evan Hunt# The contents of this file are subject to the terms
d77cb075aae5595e460e3299bfc1e8ea5d42b560Evan Hunt# of the Common Development and Distribution License
30ca20f720ad0887772a79e7abb25b4fa0e4b5b0Mark Andrews# (the License). You may not use this file except in
30ca20f720ad0887772a79e7abb25b4fa0e4b5b0Mark Andrews# compliance with the License.
30ca20f720ad0887772a79e7abb25b4fa0e4b5b0Mark Andrews# You can obtain a copy of the License at
30ca20f720ad0887772a79e7abb25b4fa0e4b5b0Mark Andrews# https://opensso.dev.java.net/public/CDDLv1.0.html or
7ec97ae74e42ec21b354fd2d1366313b41d947d6Evan Hunt# See the License for the specific language governing
701a93f5a592e4652343e049aa495d409c3ee133Mark Andrews# permission and limitations under the License.
002f1373374a0b72fc0329baa682917929bef168Tony Finch# When distributing Covered Code, include this CDDL
002f1373374a0b72fc0329baa682917929bef168Tony Finch# Header Notice in each file and include the License file
8f1ed05dc0aae7ae6c3da6ec6d405df61257a61eMark Andrews# If applicable, add the following below the CDDL Header,
8f1ed05dc0aae7ae6c3da6ec6d405df61257a61eMark Andrews# with the fields enclosed by brackets [] replaced by
8f1ed05dc0aae7ae6c3da6ec6d405df61257a61eMark Andrews# your own identifying information:
8f1ed05dc0aae7ae6c3da6ec6d405df61257a61eMark Andrews# "Portions Copyrighted [year] [name of copyright owner]"
73cf0ba4e82c6baef638ecc4e31321223f841d28Mark Andrews# $Id: agentService.properties,v 1.85 2009/12/23 00:16:19 babysunil Exp $
d8351dfc9b725b0d727be7acab6247d7d501d9a0Mark Andrews# Portions Copyrighted 2011 ForgeRock AS
5c78f1f50e53d8e2ed51a187efc2c9a0f43b4b1bMark Andrewsa11=PROFILE_ATTRIBUTE
f1740da065d4555039fe8bb53beb4153e3f94de3Mark Andrewsa12=HTTP_HEADER
f1740da065d4555039fe8bb53beb4153e3f94de3Mark Andrewsa13=SESSION_PROPERTY
31c7ab4fb3f7710af87dc9c3d64c5daf9a3dea35Mark Andrewsa15=LOG_ALLOW
ad309e8dfa0601d6053aaa12770a98a6940f89deEvan Hunta21=HTTP_HEADER
635e4351b04fd61ca6d853bdac6268c090b55129Mark Andrewsa22=REQUEST_ATTRIBUTE
635e4351b04fd61ca6d853bdac6268c090b55129Mark Andrewsa23=HTTP_COOKIE
1cf118a656f5fd210787908b845362077fc507f8Evan Hunta100=Password
1cf118a656f5fd210787908b845362077fc507f8Evan Hunta100.confirm=Password (Confirm)
1cf118a656f5fd210787908b845362077fc507f8Evan Hunta101.help=Status of the agent configuration.
1cf118a656f5fd210787908b845362077fc507f8Evan Hunta103=Inactive
6fb3db01acad7f5c1f4e23789fb0f2ce56cc07deMukund Sivaramana109=Agent Notification URL
fd82c70695888c134287b8018296028c252d100eMukund Sivaramana109.help=URL used by agent to register notification listeners. (property name: com.sun.identity.client.notification.url) <br>Hot-swap: No
fd82c70695888c134287b8018296028c252d100eMukund Sivaramana110=Location of Agent Configuration Repository
fd82c70695888c134287b8018296028c252d100eMukund Sivaramana110.help=Indicates agent's configuration located either on agent's host or centrally on OpenAM server.
fd82c70695888c134287b8018296028c252d100eMukund Sivaramana111=centralized
4a53e3c2b83c476a93148eaee0272649beb221caMark Andrews# J2EE Agent properties
2cf0fe3b8092f64f8f68ae3693fe2e73e90ad1a4Mark Andrewsa113=Agent Filter Mode
2cf0fe3b8092f64f8f68ae3693fe2e73e90ad1a4Mark Andrewsa113.help=Specifies the mode of operation of the Filter. (property name: com.sun.identity.agents.config.filter.mode) <br>Valid key: the web application name. <br>Valid values: ALL, J2EE_POLICY, URL_POLICY, SSO_ONLY, NONE <br>For this property, a global value can be set to apply to all the applications that don't have their own specific filter mode. <br>Hot-swap: No <br>Examples: <br>To set ALL as the global filter mode: leave Map Key field empty, and enter ALL in Corresponding Map Value field. <br>To set URL_POLICY as the filter mode for application BankApp: enter BankApp in Map Key field, and enter URL_POLICY in Corresponding Map Value field.
2cf0fe3b8092f64f8f68ae3693fe2e73e90ad1a4Mark Andrewsa114=User Mapping Mode
2cf0fe3b8092f64f8f68ae3693fe2e73e90ad1a4Mark Andrewsa114.help=Specifies mechanism agent uses to determine user-ID. (property name: com.sun.identity.agents.config.user.mapping.mode) <br>Hot-swap: Yes
4221d9cd1d02311fbf9b5f08a038f5af78b10b4aEvan Hunta115=User Attribute Name
4221d9cd1d02311fbf9b5f08a038f5af78b10b4aEvan Hunta115.help=Name of the attribute which contains the user-ID. (property name: com.sun.identity.agents.config.user.attribute.name) <br>Hot-swap: Yes
4221d9cd1d02311fbf9b5f08a038f5af78b10b4aEvan Hunta116=User Principal Flag
4221d9cd1d02311fbf9b5f08a038f5af78b10b4aEvan Hunta116.help=Use principal instead of just the user-ID for authenticating the user. (property name: com.sun.identity.agents.config.user.principal) <br>Hot-swap: Yes
4221d9cd1d02311fbf9b5f08a038f5af78b10b4aEvan Hunta117=User Token Name
f9c410d93711fbf312a0162f1e2d3f2a5ede69afFrancis Duponta117.help=Session property name for user-ID of the authenticated user in session. (property name: com.sun.identity.agents.config.user.token) <br>Hot-swap: Yes
f9c410d93711fbf312a0162f1e2d3f2a5ede69afFrancis Duponta118=Client IP Address Header
f9c410d93711fbf312a0162f1e2d3f2a5ede69afFrancis Duponta118.help=HTTP header name that holds the IP address of the client. (property name: com.sun.identity.agents.config.client.ip.header) <br>Hot-swap: Yes
f9c410d93711fbf312a0162f1e2d3f2a5ede69afFrancis Duponta119=Client Hostname Header
e526027287b849f0b6ab6e069156697cbafa22c1Michał Kępieńa119.help=HTTP header name that holds the Hostname of the client. (property name: com.sun.identity.agents.config.client.hostname.header) <br>Hot-swap: Yes
e526027287b849f0b6ab6e069156697cbafa22c1Michał Kępieńa121=Configuration Reload Interval
e526027287b849f0b6ab6e069156697cbafa22c1Michał Kępieńa121.help=Interval in seconds between configuration reloads. (property name: com.sun.identity.agents.config.load.interval) <br>Hot-swap: Yes
e526027287b849f0b6ab6e069156697cbafa22c1Michał Kępieńa122=Locale Language
929329d2d66a7e1083c70a9c918381935bf12799Mukund Sivaramana122.help=(property name: com.sun.identity.agents.config.locale.language) <br>Hot-swap: No
929329d2d66a7e1083c70a9c918381935bf12799Mukund Sivaramana123=Locale Country
929329d2d66a7e1083c70a9c918381935bf12799Mukund Sivaramana123.help=(property name: com.sun.identity.agents.config.locale.country) <br>Hot-swap: No
7e1a62eea2e4ba9d6c3fc718e679b965fa514f69Mark Andrewsa124=Audit Access Types
ec29d217ba3a2bf3e617a7b5b6708ae221bee999Mark Andrewsa124.help=Types of messages to log based on user URL access attempts. (property name: com.sun.identity.agents.config.audit.accesstype) <br>Hot-swap: Yes
ec29d217ba3a2bf3e617a7b5b6708ae221bee999Mark Andrewsa125=Audit Log Location
afefd754734f896bf3e0590177fff83e7cdfdf35Mark Andrewsa125.help=Specifies where audit messages should be logged. (property name: com.sun.identity.agents.config.log.disposition) <br>Hot-swap: Yes
afefd754734f896bf3e0590177fff83e7cdfdf35Mark Andrewsa126=Remote Log File Name
afefd754734f896bf3e0590177fff83e7cdfdf35Mark Andrewsa126.help=Name of file stored on OpenAM server that contains agent audit messages. (property name: com.sun.identity.agents.config.remote.logfile) <br>Hot-swap: Yes
f0353a586c2bfbae999193cb644b6bc94c7944d8Mark Andrewsa128=Rotate Local Audit Log
f0353a586c2bfbae999193cb644b6bc94c7944d8Mark Andrewsa128.help=Flag to indicate that audit log files should be rotated when reaching a certain size. (property name: com.sun.identity.agents.config.local.log.rotate) <br>Hot-swap: Yes
7ff28f5befbee76048a23e504dcd3f9a44ce6209Evan Hunta129=Local Audit Log Rotation Size
7ff28f5befbee76048a23e504dcd3f9a44ce6209Evan Hunta129.help=Size limit when a local audit log file is rotated to a new file. (property name: com.sun.identity.agents.config.local.log.size) <br>Hot-swap: Yes
7ff28f5befbee76048a23e504dcd3f9a44ce6209Evan Hunta131=Web Service Enable
7ff28f5befbee76048a23e504dcd3f9a44ce6209Evan Hunta131.help=Flag specifies if Web Service processing is enabled. (property name: com.sun.identity.agents.config.webservice.enable) <br>Hot-swap: Yes
7ff28f5befbee76048a23e504dcd3f9a44ce6209Evan Hunta132=Web Service End Points
7ff28f5befbee76048a23e504dcd3f9a44ce6209Evan Hunta132.help=A list of Web Application end points that represent Web Services. (property name: com.sun.identity.agents.config.webservice.endpoint) <br>Hot-swap: Yes
7ff28f5befbee76048a23e504dcd3f9a44ce6209Evan Hunta133=Web Service Process GET Enable
7ff28f5befbee76048a23e504dcd3f9a44ce6209Evan Hunta133.help=Flag to indicates if the processing of HTTP GET requests for Web Service endpoints is enabled. (property name: com.sun.identity.agents.config.webservice.process.get.enable) <br>Hot-swap: Yes
7ff28f5befbee76048a23e504dcd3f9a44ce6209Evan Hunta134=Web Service Authenticator
7ff28f5befbee76048a23e504dcd3f9a44ce6209Evan Hunta134.help=An implementation class of interface com.sun.identity.agents.filter.IWebServiceAuthenticator that can be used to authenticate web-service requests. (property name: com.sun.identity.agents.config.webservice.authenticator) <br>Hot-swap: Yes
cad79077bd5b2616bc4a7a6b3cbc0953bef8917fMark Andrewsa134a=Web Service Response Processor
cad79077bd5b2616bc4a7a6b3cbc0953bef8917fMark Andrewsa134a.help=An implementation class of interface com.sun.identity.agents.filter.IWebServiceResponseProcessor that can be used to process the web-service responses. (property name: com.sun.identity.agents.config.webservice.responseprocessor) <br>Hot-swap: Yes
cad79077bd5b2616bc4a7a6b3cbc0953bef8917fMark Andrewsa135=Web Service Internal Error Content File
cad79077bd5b2616bc4a7a6b3cbc0953bef8917fMark Andrewsa135.help= The name of file that contains content used by the Agent to generate an internal error fault for clients. (property name: com.sun.identity.agents.config.webservice.internalerror.content) <br>Hot-swap: Yes
adfe58e8e5cd1890585e92b67f1fd01989a1fa7dMark Andrewsa136=Web Service Authorization Error Content File
adfe58e8e5cd1890585e92b67f1fd01989a1fa7dMark Andrewsa136.help=The name of file that contains content used by the Agent to generate an authorization error fault for clients. (property name: com.sun.identity.agents.config.webservice.autherror.content) <br>Hot-swap: Yes
adfe58e8e5cd1890585e92b67f1fd01989a1fa7dMark Andrewsa137=Resource Access Denied URI
c3237dec879f82855403ff7e3ba87b298172efd5Mark Andrewsa137.help=An application-specific Map that identifies a URI of the customized access denied page. (property name: com.sun.identity.agents.config.access.denied.uri) <br>Valid key: the web application name. <br>Valid value: the customized application access denied page URI. <br>For this property, a global value can be set to apply to all the applications that don't have their own specific access denied page. <br>Hot-swap: Yes <br> Examples: <br>To set a global access denied page: leave Map Key field empty, and enter the global access denied page URI /sample/accessdenied.html in Corresponding Map Value field. <br> To set the access denied page URI for application BankApp: enter BankApp in Map Key field, and enter the application access denied page URI /BankApp/accessdenied.html in Corresponding Map Value field.
c3237dec879f82855403ff7e3ba87b298172efd5Mark Andrewsa138=Login Form URI
c3237dec879f82855403ff7e3ba87b298172efd5Mark Andrewsa138.help=List of absolute URIs corresponding to an application's web.xml form-login-page element. (property name: com.sun.identity.agents.config.login.form) <br>Hot-swap: Yes <br> Example: <br> /BankApp/jsp/login.jsp
c3237dec879f82855403ff7e3ba87b298172efd5Mark Andrewsa139=Login Error URI
c3237dec879f82855403ff7e3ba87b298172efd5Mark Andrewsa139.help=List of absolute URIs corresponding to an application's web.xml form-error-page element. (property name: com.sun.identity.agents.config.login.error.uri) <br>Hot-swap: Yes <br> Example: <br> /BankApp/jsp/error.jsp
cb616c6d5c2ece1fac37fa6e0bca2b53d4043098Mark Andrewsa141=Use Internal Login
cb616c6d5c2ece1fac37fa6e0bca2b53d4043098Mark Andrewsa141.help=Set to false if want to customize Login Content File instead of default internal content provided. (property name: com.sun.identity.agents.config.login.use.internal) <br>Hot-swap: Yes
cb616c6d5c2ece1fac37fa6e0bca2b53d4043098Mark Andrewsa142=Login Content File Name
c0a2210466dec0cc81ebf2ffbe21693b57b9c29cMark Andrewsa142.help=Complete path and name of custom login content file. (property name: com.sun.identity.agents.config.login.content.file) <br>Hot-swap: Yes
c0a2210466dec0cc81ebf2ffbe21693b57b9c29cMark Andrewsa143=Custom Authentication Handler
c0a2210466dec0cc81ebf2ffbe21693b57b9c29cMark Andrewsa143.help=Application specific authentication handler to authenticate the logged on user with the application server. (property name: com.sun.identity.agents.config.auth.handler) <br>Valid key: the web application name. <br>Valid value: the authentication handler class name. <br>Hot-swap: Yes <br>Example: <br>To set authentication handler for application BankApp: enter BankApp in Map Key field, and enter authentication handler class name BankAuthHandler in Corresponding Map Value field.
534057c9f91a3eb6e0541f3526459c716239b337Mark Andrewsa144=Custom Logout Handler
534057c9f91a3eb6e0541f3526459c716239b337Mark Andrewsa144.help=Application specific logout handler to log out a user with the application server. (property name: com.sun.identity.agents.config.logout.handler) <br>Valid key: the web application name. <br>Valid value: the logout handler class name. <br>Hot-swap: Yes <br> Example: <br>To set logout handler for application BankApp: enter BankApp in Map Key field, and enter logout handler class name BankLogoutHandler in Corresponding Map Value field.
534057c9f91a3eb6e0541f3526459c716239b337Mark Andrewsa145=Custom Verification Handler
0f14b041328c062b1fa391887376388dfc8b2fe5Mark Andrewsa145.help=Application specific verification handler to validate the user credentials with the local repository. (property name: com.sun.identity.agents.config.verification.handler) <br>Valid key: the web application name. <br>Valid value: the verification handler class name. <br>Hot-swap: Yes <br> Example: <br> To set verification handler for application BankApp: enter BankApp in Map Key field, and enter verification handler class name BankVerificationHandler in Corresponding Map Value field.
0f14b041328c062b1fa391887376388dfc8b2fe5Mark Andrewsa146=HTTP Session Binding
0f14b041328c062b1fa391887376388dfc8b2fe5Mark Andrewsa146.help=If true will invalidate the http session when login has failed, user has no SSO session, or principal user name does not match SSO user name. (property name: com.sun.identity.agents.config.httpsession.binding) <br>Hot-swap: Yes
0f14b041328c062b1fa391887376388dfc8b2fe5Mark Andrewsa147=Goto Parameter Name
f7f4730e563a2749629fe7fef4cd9513cd2bfab7Mark Andrewsa147.help=Property used only when CDSSO is enabled. Default value should be changed only when the login URL has a landing page specified <br> Example : com.sun.identity.agents.config.cdsso.cdcservlet.url = http://host:port/opensso/cdcservlet?goto=http://agent:port/landing.jsp <br> The parameter is used by the Agent to append the original request URL to this cdcserlet URL. This parameter is consumed by the landing page to redirect to the original URL. (property name: com.sun.identity.agents.config.redirect.param) <br>Hot-swap: Yes <br> Example: com.sun.identity.agents.config.redirect.param = goto2<br> The complete URL sent for authentication will be <br> http://host:port/opensso/cdcservlet?goto=http://agent:port/landing.jsp?goto2=http://agent.port/original.jsp
f7f4730e563a2749629fe7fef4cd9513cd2bfab7Mark Andrewsa148=OpenAM Login URL
1848d38f441ebf70ab21f6151bc3487a92d25b63Mark Andrewsa148.help=OpenAM login page URL. (property name: com.sun.identity.agents.config.login.url) <br>Hot-swap: Yes <br> Example: <br> http://host:port/opensso/UI/Login
1848d38f441ebf70ab21f6151bc3487a92d25b63Mark Andrewsa149=Login URL Prioritized
2d82ed9456e72dc4373bea19d63411afe1c48962Mark Andrewsa149.help=Specifies if failover sequence for Login URLs or CDSSO URLs should be prioritized as defined in the OpenAM Login URL list. (property name: com.sun.identity.agents.config.login.url.prioritized) <br>Hot-swap: Yes
2d82ed9456e72dc4373bea19d63411afe1c48962Mark Andrewsa151=Login URL Probe
2d82ed9456e72dc4373bea19d63411afe1c48962Mark Andrewsa151.help=Specifies if agent will check the availability of these urls before redirecting to them. (property name: com.sun.identity.agents.config.login.url.probe.enabled) <br>Hot-swap: Yes
a5a1cbece45e6ca68aafe3b9b995eac6b0f45dd2Mark Andrewsa152=Login URL Probe Timeout
a5a1cbece45e6ca68aafe3b9b995eac6b0f45dd2Mark Andrewsa152.help=The connect timeout value in milliseconds, if also Login URL Probe is set to true. (property name: com.sun.identity.agents.config.login.url.probe.timeout) <br>Hot-swap: Yes
0d6328ce5f6b799f8e7c6cbbb3b965cf29bfb7baMark Andrewsa153=Alternative Agent Host Name
0d6328ce5f6b799f8e7c6cbbb3b965cf29bfb7baMark Andrewsa153.help=Host name identifying the Agent protected server to the client browsers if different from the actual host name. (property name: com.sun.identity.agents.config.agent.host) <br>Hot-swap: Yes
0d6328ce5f6b799f8e7c6cbbb3b965cf29bfb7baMark Andrewsa154=Alternative Agent Port Name
e01ef6f01c7e8f80122cd80a2e011425a0135489Mark Andrewsa154.help=Port number identifying the Agent protected server listening port to the client browsers if different from the actual listening port. (property name: com.sun.identity.agents.config.agent.port) <br>Hot-swap: Yes
677f507de7c546c187c1505c48bc7b440545485cMark Andrewsa155=Alternative Agent Protocol
677f507de7c546c187c1505c48bc7b440545485cMark Andrewsa155.help=Protocol being used (http/https) by the client browsers to communicate with the Agent protected server if different from the actual protocol used by the server. (property name: com.sun.identity.agents.config.agent.protocol) <br>Hot-swap: Yes
677f507de7c546c187c1505c48bc7b440545485cMark Andrewsa156=Login Attempt Limit
124cc0660c7eff8021c2422fb47441e9ca08b3f9Tinderbox Usera156.help=Limit of failed login attempts for a user's single browser session until triggering the blocking of the user request. Value of 0 disables this feature. (property name: com.sun.identity.agents.config.login.attempt.limit) <br>Hot-swap: Yes
e01ef6f01c7e8f80122cd80a2e011425a0135489Mark Andrewsa158=SSO Cache Enable
677f507de7c546c187c1505c48bc7b440545485cMark Andrewsa158.help=Specifies if the SSO Cache is active for the agent. Cache is used through public APIs exposed by the agent SDK. (property name: com.sun.identity.agents.config.amsso.cache.enable) <br>Hot-swap: Yes
677f507de7c546c187c1505c48bc7b440545485cMark Andrewsa159=Cookie Reset
677f507de7c546c187c1505c48bc7b440545485cMark Andrewsa159.help=Agent resets cookies in the response before redirecting to authentication. (property name: com.sun.identity.agents.config.cookie.reset.enable) <br>Hot-swap: Yes
677f507de7c546c187c1505c48bc7b440545485cMark Andrewsa161=Cookies Reset Name List
677f507de7c546c187c1505c48bc7b440545485cMark Andrewsa161.help=Cookie names that will be reset by the Agent if Cookie Reset is enabled. (property name: com.sun.identity.agents.config.cdsso.cookie.reset.name) <br>Hot-swap: Yes
677f507de7c546c187c1505c48bc7b440545485cMark Andrewsa162=Cookies Reset Domain Map
bf459d24a117ae2c54c37016430b41cd6d73491cMark Andrewsa162.help=Maps cookie names specified in Cookie Reset Name List to value being the domain of this cookie to be used when a reset event occurs. (property name: com.sun.identity.agents.config.cookie.reset.domain) <br>Hot-swap: Yes
bf459d24a117ae2c54c37016430b41cd6d73491cMark Andrewsa163=Cookies Reset Path Map
bf459d24a117ae2c54c37016430b41cd6d73491cMark Andrewsa163.help=Maps cookie names specified in Cookie Reset Name List to value being the path of this cookie to be used when a reset event occurs. (property name: com.sun.identity.agents.config.cookie.reset.path) <br>Hot-swap: Yes
677f507de7c546c187c1505c48bc7b440545485cMark Andrewsa164=Cross Domain SSO
677f507de7c546c187c1505c48bc7b440545485cMark Andrewsa164.help=Enables Cross Domain Single SignOn. (property name: com.sun.identity.agents.config.cdsso.enable) <br>Hot-swap: Yes
677f507de7c546c187c1505c48bc7b440545485cMark Andrewsa165=CDSSO Redirect URI
bf459d24a117ae2c54c37016430b41cd6d73491cMark Andrewsa165.help= An intermediate URI that is used by the Agent for processing CDSSO requests. (property name: com.sun.identity.agents.config.cdsso.redirect.uri) <br>Hot-swap: Yes
f53e0bda467d96dfeeba1b4da30c37b37766bb75Evan Hunta166=CDSSO Servlet URL
f53e0bda467d96dfeeba1b4da30c37b37766bb75Evan Hunta166.help=List of URLs of the available CDSSO controllers that may be used by the Agent for CDSSO processing. (property name: com.sun.identity.agents.config.cdsso.cdcservlet.url) <br>Hot-swap: Yes <br> Example: <br> http://host:port/opensso/cdcservlet
f53e0bda467d96dfeeba1b4da30c37b37766bb75Evan Hunta167=CDSSO Clock Skew
f53e0bda467d96dfeeba1b4da30c37b37766bb75Evan Hunta167.help=Time in seconds to be used by the Agent to determine the validity of the CDSSO AuthnResponse assertion. (property name: com.sun.identity.agents.config.cdsso.clock.skew) <br>Hot-swap: Yes
f53e0bda467d96dfeeba1b4da30c37b37766bb75Evan Hunta168=CDSSO Trusted ID Provider
81e3e3084980afcd61416f572c6e72d38a3808abMichał Kępieńa168.help=List of OpenAM Server/ID providers that should be trusted by the agent, when evaluating the CDC Liberty Responses. (property name: com.sun.identity.agents.config.cdsso.trusted.id.provider) <br>Hot-swap: Yes <br> Example: <br> http://host:port/opensso/cdcservlet
81e3e3084980afcd61416f572c6e72d38a3808abMichał Kępieńa169=CDSSO Secure Enable
81e3e3084980afcd61416f572c6e72d38a3808abMichał Kępieńa169.help=The SSO Token cookie set by the agent in the different domains in CDSSO mode will be marked secure. Only transmitted if the communications channel with host is a secure one. (property name: com.sun.identity.agents.config.cdsso.secure.enable) <br>Hot-swap: Yes
81e3e3084980afcd61416f572c6e72d38a3808abMichał Kępieńa170=CDSSO Domain List
64d7fa3ec4785b390665860aa6bdae304b3c1d24Mark Andrewsa170.help=Domains for which cookies have to be set in a CDSSO scenario. (property name: com.sun.identity.agents.config.cdsso.domain) <br>Hot-swap: Yes <br> Example: <br> .sun.com
64d7fa3ec4785b390665860aa6bdae304b3c1d24Mark Andrewsa171=Application Logout Handler
64d7fa3ec4785b390665860aa6bdae304b3c1d24Mark Andrewsa171.help=An application-specific Map that identifies a handler to be used for logout processing. (property name: com.sun.identity.agents.config.logout.application.handler) <br>Valid key: the web application name. <br>Valid value: the application logout handler class name. <br>For this property, a global value can be set to apply to all the applications that don't have their own specific logout handler. <br>Hot-swap: Yes <br> Examples: <br>To set a global application logout handler: leave Map Key field empty, and enter the global application logout handler class name GlobalApplicationLogoutHandler in Corresponding Map Value field. <br>To set the logout handler for application BankApp: enter BankApp in Map Key field, and enter the application logout handler class name BankAppLogoutHandler in Corresponding Map Value field.
64d7fa3ec4785b390665860aa6bdae304b3c1d24Mark Andrewsa172=Application Logout URI
64d7fa3ec4785b390665860aa6bdae304b3c1d24Mark Andrewsa172.help=An application-specific Map that identifies a request URI which indicates a logout event. (property name: com.sun.identity.agents.config.logout.uri) <br>Valid key: the web application name. <br>Valid value: the application logout URI. <br>For this property, a global value can be set to apply to all the applications that don't have their own specific logout URI. <br>Hot-swap: Yes <br> Examples: <br>To set a global application logout URI: leave Map Key field empty, and enter the global application logout URI /logout.jsp in Corresponding Map Value field. <br> To set the logout URI for application BankApp: enter BankApp in Map Key field, and enter the application logout URI /BankApp/logout.jsp in Corresponding Map Value field.
64d7fa3ec4785b390665860aa6bdae304b3c1d24Mark Andrewsa173=Logout Request Parameter
75505befa93c993aa5d2df24a2b64eac0c34cbffMark Andrewsa173.help=An application-specific Map that identifies a parameter which when present in the HTTP request indicates a logout event. (property name: com.sun.identity.agents.config.logout.request.param) <br>Valid key: the web application name. <br>Valid value: the logout request parameter. <br>For this property, a global value can be set to apply to all the applications that don't have their own specific logout request parameter. <br>Hot-swap: Yes <br> Examples: <br>To set a global application logout request parameter: leave Map Key field empty, and enter the global application logout request parameter logoutparam in Corresponding Map Value field. <br> To set the logout request parameter for application BankApp: enter BankApp in Map Key field, and enter the logout request parameter logoutparam in Corresponding Map Value field.
75505befa93c993aa5d2df24a2b64eac0c34cbffMark Andrewsa174=Logout Introspect Enabled
75505befa93c993aa5d2df24a2b64eac0c34cbffMark Andrewsa174.help=Allows the Agent to search HTTP request body to locate logout parameter. (property name: com.sun.identity.agents.config.logout.introspect.enabled) <br>Hot-swap: Yes
a38f07c73790170842e4523b4a474d01ca0dede1Michał Kępieńa175=Logout Entry URI
a38f07c73790170842e4523b4a474d01ca0dede1Michał Kępieńa175.help=An application-specific Map that identifies a URI to be used as an entry point after successful logout and subsequent successful authentication if applicable. (property name: com.sun.identity.agents.config.logout.entry.uri) <br>Valid key: the web application name. <br>Valid value: the logout entry URI. <br>For this property, a global value can be set to apply to all the applications that don't have their own specific logout entry URI. <br>Hot-swap: Yes <br> Examples: <br>To set a global application logout entry URI: leave Map Key field empty, and enter the global application logout entry URI /welcome.html in Corresponding Map Value field. <br> To set the logout entry URI for application BankApp: enter BankApp in Map Key field, and enter the logout entry URI /BankApp/welcome.html in Corresponding Map Value field.
a38f07c73790170842e4523b4a474d01ca0dede1Michał Kępieńa176=FQDN Check
39d5523a8afc73cbdb4fa426de2ce071267a5d6fMark Andrewsa176.help=Enables checking of fqdn default value and fqdn map values. (property name: com.sun.identity.agents.config.fqdn.check.enable) <br>Hot-swap: Yes
39d5523a8afc73cbdb4fa426de2ce071267a5d6fMark Andrewsa177=FQDN Default
39d5523a8afc73cbdb4fa426de2ce071267a5d6fMark Andrewsa177.help=Fully qualified hostname that the users should use in order to access resources. (property name: com.sun.identity.agents.config.fqdn.default) <br>Hot-swap: Yes
39d5523a8afc73cbdb4fa426de2ce071267a5d6fMark Andrewsa178=FQDN Virtual Host Map
1f4a3c7088594d1b64cd734eb69e1fd023fde8bfMichał Kępieńa178.help=Enables virtual hosts, partial hostname and IP address to access protected resources. Maps invalid key to valid value. (property name: com.sun.identity.agents.config.fqdn.mapping) <br>Hot-swap: Yes <br> Example: <br> To map myserver to myserver.mydomain.com: enter myserver in Map Key field, and enter myserver.mydomain.com in Corresponding Map Value field.
1f4a3c7088594d1b64cd734eb69e1fd023fde8bfMichał Kępieńa179=Legacy User Agent Support Enable
1f4a3c7088594d1b64cd734eb69e1fd023fde8bfMichał Kępieńa179.help=Enables support for legacy user agents (browser). (property name: com.sun.identity.agents.config.legacy.support.enable) <br>Hot-swap: Yes
91827e6fd3851a5fe129ef5409ff45833ca01a0eMark Andrewsa181=Legacy User Agent List
91827e6fd3851a5fe129ef5409ff45833ca01a0eMark Andrewsa181.help=List of user agent header values that identify legacy browsers. Entries in this list can have wild card character '*'. (property name: com.sun.identity.agents.config.legacy.user.agent) <br>Hot-swap: Yes
91827e6fd3851a5fe129ef5409ff45833ca01a0eMark Andrewsa182=Legacy User Agent Redirect URI
35aae5884f410180706a89a9715bf9a85eeeb4b7Michał Kępieńa182.help=An intermediate URI used by the Agent to redirect legacy user agent requests. (property name: com.sun.identity.agents.config.legacy.redirect.uri) <br>Hot-swap: Yes
35aae5884f410180706a89a9715bf9a85eeeb4b7Michał Kępieńa183=Custom Response Header
35aae5884f410180706a89a9715bf9a85eeeb4b7Michał Kępieńa183.help=Map specifies the custom headers that are set by the Agent on the client browser. The key is the header name and the value represents the header value. (property name: com.sun.identity.agents.config.response.header) <br>Hot-swap: Yes <br> Example: <br> To set the custom header Cache-Control to value no-cache: enter Cache-Control in Map Key field, and enter no-cache in Corresponding Map Value field.
57b1d64d9ae12d56973716e96f9743a00d47af4aMichał Kępieńa184=Redirect Attempt Limit
57b1d64d9ae12d56973716e96f9743a00d47af4aMichał Kępieńa184.help=Number of successive single point redirects that a user can make using a single browser session which will trigger the blocking of the user request. Set to 0 to disable this feature. (property name: com.sun.identity.agents.config.redirect.attempt.limit) <br>Hot-swap: Yes
57b1d64d9ae12d56973716e96f9743a00d47af4aMichał Kępieńa185=Port Check Enable
2d517e233ff3b3fcd272eb5b2e2d3db6d31a1681Michał Kępieńa185.help=Indicates if port check functionality is enabled or disabled. (property name: com.sun.identity.agents.config.port.check.enable) <br>Hot-swap: Yes
2d517e233ff3b3fcd272eb5b2e2d3db6d31a1681Michał Kępieńa186=Port Check File
2d517e233ff3b3fcd272eb5b2e2d3db6d31a1681Michał Kępieńa186.help=Name or complete path of a file that has the necessary content needed to handle requests that need port correction. (property name: com.sun.identity.agents.config.port.check.file) <br>Hot-swap: Yes
09c3efda414314d7edcfb2aed9463fb935fc95a6Mark Andrewsa187=Port Check Setting
09c3efda414314d7edcfb2aed9463fb935fc95a6Mark Andrewsa187.help=Map of port versus protocol entries with the key being the listening port number and value being the listening protocol to be used by the Agent to identify requests with invalid port numbers. (property name: com.sun.identity.agents.config.port.check.setting) <br>Hot-swap: Yes <br> Example: <br> To map port 80 to protocol http: enter 80 in Map Key field, and enter http in Corresponding Map Value field.
86d2f9abc8493321aacb0d540485de4d562fb734Mark Andrewsa188=Not Enforced URIs
86d2f9abc8493321aacb0d540485de4d562fb734Mark Andrewsa188.help=List of URIs for which protection is not enforced by the Agent. (property name: com.sun.identity.agents.config.notenforced.uri) <br>Hot-swap: Yes <br> Examples: <br> /BankApp/public/* <br> /BankApp/images/*
86d2f9abc8493321aacb0d540485de4d562fb734Mark Andrewsa189=Invert Not Enforced URIs
86d2f9abc8493321aacb0d540485de4d562fb734Mark Andrewsa189.help=Inverts protection of URIs specified in Not Enforced URIs list. When set to true, it indicates that the URIs specified should be enforced and all other URIs should be not enforced by the Agent. (property name: com.sun.identity.agents.config.notenforced.uri.invert) <br>Hot-swap: Yes
86d2f9abc8493321aacb0d540485de4d562fb734Mark Andrewsa191=Not Enforced URIs Cache Enabled
86d2f9abc8493321aacb0d540485de4d562fb734Mark Andrewsa191.help=Enables the caching of the Not Enforced URIs list evaluation results. (property name: com.sun.identity.agents.config.notenforced.uri.cache.enable) <br>Hot-swap: Yes
86d2f9abc8493321aacb0d540485de4d562fb734Mark Andrewsa192=Not Enforced URIs Cache Size
86d2f9abc8493321aacb0d540485de4d562fb734Mark Andrewsa192.help=Size of the cache to be used if caching of not enforced URI list evaluation results is enabled. (property name: com.sun.identity.agents.config.notenforced.uri.cache.size) <br>Hot-swap: Yes
09c3efda414314d7edcfb2aed9463fb935fc95a6Mark Andrewsa193=Not Enforced Client IP List
86d2f9abc8493321aacb0d540485de4d562fb734Mark Andrewsa193.help=No authentication and authorization protection from agent are required for the requests coming from these client IP addresses. (property name: com.sun.identity.agents.config.notenforced.ip) <br>Hot-swap: Yes <br> Examples: <br> 192.18.145.* <br> 192.18.146.123
c7e57ce1b0bca9bc7da14bec485f7a7e3e4c761fMichał Kępieńa194=Not Enforced IP Invert List
c7e57ce1b0bca9bc7da14bec485f7a7e3e4c761fMichał Kępieńa194.help=Client IP Addresses to invert protection of IP addresses listed in the related Not Enforced Client IP List. (property name: com.sun.identity.agents.config.notenforced.ip.invert) <br>Hot-swap: Yes
c7e57ce1b0bca9bc7da14bec485f7a7e3e4c761fMichał Kępieńa195=Not Enforced IP Cache Flag
3ed16e796dba90c96933c8a8a3f5b9404d8d3e61Mark Andrewsa195.help=Enable caching of not-enforced IP list evaluation results. (property name: com.sun.identity.agents.config.notenforced.ip.cache.enable) <br>Hot-swap: Yes
3ed16e796dba90c96933c8a8a3f5b9404d8d3e61Mark Andrewsa196=Not Enforced IP Cache Size
3ed16e796dba90c96933c8a8a3f5b9404d8d3e61Mark Andrewsa196.help=Size of the cache to be used if Not Enforced IP Cache Flag is enabled. (property name: com.sun.identity.agents.config.notenforced.ip.cache.size) <br>Hot-swap: Yes
14d8a144779b54b103d2da741a2242bf5f9052f7Mark Andrewsa197=Cookie Separator Character
14d8a144779b54b103d2da741a2242bf5f9052f7Mark Andrewsa197.help=Character that will be used to separate multiple values of the same attribute when it is being set as a cookie. (property name: com.sun.identity.agents.config.attribute.cookie.separator) <br>Hot-swap: Yes
14d8a144779b54b103d2da741a2242bf5f9052f7Mark Andrewsa198=Fetch Attribute Date Format
70e041bea19b6ad9522b89c2299ad315a2deaafdMark Andrewsa198.help=Format of date attribute values to be used when the attribute is being set as HTTP header. Format is based on java.text.SimpleDateFormat. (property name: com.sun.identity.agents.config.attribute.date.format) <br>Hot-swap: Yes
70e041bea19b6ad9522b89c2299ad315a2deaafdMark Andrewsa199=Attribute Cookie Encode
70e041bea19b6ad9522b89c2299ad315a2deaafdMark Andrewsa199.help=Indicates if the value of the attribute should be URL encoded before being set as a cookie. (property name: com.sun.identity.agents.config.attribute.cookie.encode) <br>Hot-swap: Yes
67247b4a8304bac790648a351a95b8b0f4c512a6Mark Andrewsa200=Refresh Session Idle Time
67247b4a8304bac790648a351a95b8b0f4c512a6Mark Andrewsa200.help=Indicates if opensso session idle time should be refreshed or reset for not enforced URIs. (property name: com.sun.identity.agents.config.notenforced.refresh.session.idletime) <br>Hot-swap: Yes
eeb919b6f572e033d97cf001e4cd44aaff54e5dcMichał Kępieńa201=Profile Attribute Fetch Mode
eeb919b6f572e033d97cf001e4cd44aaff54e5dcMichał Kępieńa201.help=The mode of fetching profile attributes. (property name: com.sun.identity.agents.config.profile.attribute.fetch.mode) <br>Hot-swap: Yes
eeb919b6f572e033d97cf001e4cd44aaff54e5dcMichał Kępieńa202=Profile Attribute Mapping
a55438eda32ecebf43ead45b216662b7923a465fMark Andrewsa202.help=Maps the profile attributes to be populated under specific names for the currently authenticated user. (property name: com.sun.identity.agents.config.profile.attribute.mapping) <br>Hot-swap: Yes <br> Example: <br> To populate the value of profile attribute cn under name CUSTOM-Common-Name: enter cn in Map Key field, and enter CUSTOM-Common-Name in Corresponding Map Value field. <br> To populate the value of profile attribute mail under name CUSTOM-Email: enter mail in Map Key field, and enter CUSTOM-Email in Corresponding Map Value field.
a55438eda32ecebf43ead45b216662b7923a465fMark Andrewsa203=Session Attribute Fetch Mode
a55438eda32ecebf43ead45b216662b7923a465fMark Andrewsa203.help=The mode of fetching session attributes. (property name: com.sun.identity.agents.config.session.attribute.fetch.mode) <br>Hot-swap: Yes
8de17f83cafa91a5720dd0b8c1aee5f47f6d7f09Evan Hunta204=Session Attribute Mapping
8de17f83cafa91a5720dd0b8c1aee5f47f6d7f09Evan Hunta204.help=Maps the session attributes to be populated under specific names for the currently authenticated user. (property name: com.sun.identity.agents.config.session.attribute.mapping) <br>Hot-swap: Yes <br> Example: <br> To populate the value of session attribute UserToken under name CUSTOM-userid: enter UserToken in Map Key field, and enter CUSTOM-userid in Corresponding Map Value field.
8de17f83cafa91a5720dd0b8c1aee5f47f6d7f09Evan Hunta205=Response Attribute Fetch Mode
9789e54e55b61b669fb31a8b70e9655e8357dda2Mark Andrewsa205.help=The mode of fetching policy response attributes. (property name: com.sun.identity.agents.config.response.attribute.fetch.mode) <br>Hot-swap: Yes
9789e54e55b61b669fb31a8b70e9655e8357dda2Mark Andrewsa206=Response Attribute Mapping
f8362536c647625e602c8450a778a2b7ba90c9f4Mark Andrewsa206.help=Maps the policy response attributes to be populated under specific names for the currently authenticated user. (property name: com.sun.identity.agents.config.response.attribute.mapping) <br>Hot-swap: Yes <br> Example: <br> To populate the value of response attribute uid under name CUSTOM-USER-NAME: enter uid in Map Key field, and enter CUSTOM-USER-NAME in Corresponding Map Value field.
f8362536c647625e602c8450a778a2b7ba90c9f4Mark Andrewsa207=Bypass Principal List
f8362536c647625e602c8450a778a2b7ba90c9f4Mark Andrewsa207.help=List of principals that are bypassed by the Agent for authentication and search purposes. (property name: com.sun.identity.agents.config.bypass.principal) <br>Hot-swap: Yes <br> Examples: <br> guest <br> testuser
24231e53a5c3079431f84dcddfee1e761fec7329Mark Andrewsa208=Default Privileged Attribute
24231e53a5c3079431f84dcddfee1e761fec7329Mark Andrewsa208.help=List of privileged attributes that will be granted to all users who have a valid OpenAM session. (property name: com.sun.identity.agents.config.default.privileged.attribute) <br>Hot-swap: Yes <br> Example: <br> AUTHENTICATED_USERS
24231e53a5c3079431f84dcddfee1e761fec7329Mark Andrewsa209=Privileged Attribute Type
24231e53a5c3079431f84dcddfee1e761fec7329Mark Andrewsa209.help=List of privileged attribute types that will be fetched for each user. (property name: com.sun.identity.agents.config.privileged.attribute.type) <br>Hot-swap: Yes <br> Example: <br> Group
4b669b69bae7dedda2faa09a7ade247499c1d49cMichał Kępieńa211=Privileged Attributes To Lower Case
4b669b69bae7dedda2faa09a7ade247499c1d49cMichał Kępieńa211.help=Maps the privileged attribute types to whether they should be converted to lowercase. (property name: com.sun.identity.agents.config.privileged.attribute.tolowercase) <br> Valid Keys: the privileged attribute types, such as Group, Role. <br>Valid value: true, false. <br>Hot-swap: Yes <br> Example: <br> Enter Group in Map Key field, and enter false in Corresponding Map Value field.
4b669b69bae7dedda2faa09a7ade247499c1d49cMichał Kępieńa212=Privileged Session Attribute
4b669b69bae7dedda2faa09a7ade247499c1d49cMichał Kępieńa212.help=List of session property names which hold privileged attributes for the authenticated user. (property name: com.sun.identity.agents.config.privileged.session.attribute) <br>Hot-swap: Yes <br> Example: <br> UserToken
eb11b39981689e4a20fbe95e533577eacab992b4Mukund Sivaramana213=Enable Privileged Attribute Mapping
eb11b39981689e4a20fbe95e533577eacab992b4Mukund Sivaramana213.help=Enable a mapping from the original value of an attribute to another value. To satisfy container-specific restrictions on character set being used in certain configuration files. (property name: com.sun.identity.agents.config.privileged.attribute.mapping.enable) <br>Hot-swap: Yes
eb11b39981689e4a20fbe95e533577eacab992b4Mukund Sivaramana214=Privileged Attribute Mapping
8daeae9b01a2b7eb9fd6511b352b03bd7d96ae79Michał Kępieńa214.help=Map if using Enable Privileged Attribute Mapping. (property name: com.sun.identity.agents.config.privileged.attribute.mapping) <br>Hot-swap: Yes <br> Examples: <br> To map UUID id=manager,ou=group,dc=openam,dc=forgerock.dc=org to the principal name am_manager_role specified in webapp's deployment descriptor: enter id=manager,ou=group,dc=openam,dc=forgerock.dc=org in Map Key field, and enter am_manager_role in Corresponding Map Value field. <br> To map UUID id=employee,ou=group,dc=openam,dc=forgerock.dc=org to the principal name am_employee_role specified in webapp's deployment descriptor: enter id=employee,ou=group,dc=openam,dc=forgerock.dc=org in Map Key field, and enter am_employee_role in Corresponding Map Value field.
8daeae9b01a2b7eb9fd6511b352b03bd7d96ae79Michał Kępieńa215=Agent Debug Level
e7c0f978425f45731b08be1363f20626b0344f23Evan Hunta215.help=Specifies type of agent debug messages to log. (property name: com.iplanet.services.debug.level) <br>Hot-swap: Yes
e7c0f978425f45731b08be1363f20626b0344f23Evan Hunta216=Cookie Name
01967d183990e44752fe61f193dab9c04c3afd9cEvan Hunta216.help=Name of the SSO Token cookie used between the OpenAM server and the Agent. (property name: com.iplanet.am.cookie.name) <br>Hot-swap: No
01967d183990e44752fe61f193dab9c04c3afd9cEvan Hunta218=Enable Client Polling
01967d183990e44752fe61f193dab9c04c3afd9cEvan Hunta218.help=Specifies if the session client must use polling for updating session information and not depend upon server notifications. (property name: com.iplanet.am.session.client.polling.enable) <br>Hot-swap: No
575e9d9e4b6beaae688f107814a320b91243a4b2Mark Andrewsa219=Client Polling Period
575e9d9e4b6beaae688f107814a320b91243a4b2Mark Andrewsa219.help=Time in seconds after which the session client will request update of cached session information from the server. (property name: com.iplanet.am.session.client.polling.period) <br>Hot-swap: No
575e9d9e4b6beaae688f107814a320b91243a4b2Mark Andrewsa221=Encryption Provider
575e9d9e4b6beaae688f107814a320b91243a4b2Mark Andrewsa221.help=Specifies the encryption provider implementation to be used by the Agent. (property name: com.iplanet.security.encryptor) <br>Hot-swap: No
7c442d7fe06bc95432af7513764e5cc85e133648Evan Hunta222=Enable Notification of User Data Caches
7c442d7fe06bc95432af7513764e5cc85e133648Evan Hunta222.help=Enable notifications for amsdk and IdRepo Caches. (property name: com.sun.identity.idm.remote.notification.enabled) <br>Hot-swap: No
7c442d7fe06bc95432af7513764e5cc85e133648Evan Hunta223=User Data Cache Polling Time
7c442d7fe06bc95432af7513764e5cc85e133648Evan Hunta223.help=Cache update time in minutes for user management data. If set to '0' no updates happen. (property name: com.iplanet.am.sdk.remote.pollingTime) <br>Hot-swap: No
5e1ca7a326741a8f74e6f2b907c7e1fbf428bf80Michał Kępieńa224=Enable Notification of Service Data Caches
5e1ca7a326741a8f74e6f2b907c7e1fbf428bf80Michał Kępieńa224.help=Enable the notifications for service management caches. (property name: com.sun.identity.sm.notification.enabled) <br>Hot-swap: No
5e1ca7a326741a8f74e6f2b907c7e1fbf428bf80Michał Kępieńa225=Service Data Cache Time
5e1ca7a326741a8f74e6f2b907c7e1fbf428bf80Michał Kępieńa225.help=Cache update time in minutes for service configuration data. If set to '0' no updates happen. (property name: com.sun.identity.sm.cacheTime) <br>Hot-swap: No
ba93bc80a7bce5ba07b2f98e68f0f57402f2459cMark Andrewsa229=OpenAM Authentication Service Protocol
ba93bc80a7bce5ba07b2f98e68f0f57402f2459cMark Andrewsa229.help=Protocol to be used by the OpenAM authentication service. (property name: com.iplanet.am.server.protocol) <br>Hot-swap: No
8ed107eab48687887d45a1ceb18b712bc7209dbaTinderbox Usera231=OpenAM Authentication Service Host Name
ba93bc80a7bce5ba07b2f98e68f0f57402f2459cMark Andrewsa231.help=Host name to be used by the OpenAM authentication service. (property name: com.iplanet.am.server.host) <br>Hot-swap: No
5f103158280fb2e814db305f917aa42040221623Mark Andrewsa232=OpenAM Authentication Service Port
5f103158280fb2e814db305f917aa42040221623Mark Andrewsa232.help=Port to be used by the OpenAM authentication service. (property name: com.iplanet.am.server.port) <br>Hot-swap: No
5f103158280fb2e814db305f917aa42040221623Mark Andrewsa235=Enable Policy Notifications
5f103158280fb2e814db305f917aa42040221623Mark Andrewsa235.help=Enable Notifications for remote policy client. (property name: com.sun.identity.agents.notification.enabled) <br>Hot-swap: No
e5715e1fe12e5ad17522bd41c31e637c869d27b7Evan Hunta237=Policy Client Polling Interval
e5715e1fe12e5ad17522bd41c31e637c869d27b7Evan Hunta237.help=Duration in minutes after which the cached entries are refreshed by remote policy client. (property name: com.sun.identity.agents.polling.interval) <br>Hot-swap: No
b7b76d6b855cd4c1152c26d34fb61af05f965c5eEvan Hunta238=Policy Client Cache Mode
b7b76d6b855cd4c1152c26d34fb61af05f965c5eEvan Hunta238.help=Mode of caching to be used by remote policy client. (property name: com.sun.identity.policy.client.cacheMode) <br>Hot-swap: No
b7b76d6b855cd4c1152c26d34fb61af05f965c5eEvan Hunta239=Policy Client Boolean Action Values
b7b76d6b855cd4c1152c26d34fb61af05f965c5eEvan Hunta239.help=Boolean action values for policy action names. (property name: com.sun.identity.policy.client.booleanActionValues) <br>Hot-swap: No
764e2f3413ca89d09abffb3eb228c8c820bf08b8Mark Andrewsa241=Policy Client Resource Comparators
764e2f3413ca89d09abffb3eb228c8c820bf08b8Mark Andrewsa241.help=Resource Comparators to be used for different service names. (property name: com.sun.identity.policy.client.resourceComparators) <br>Hot-swap: No
764e2f3413ca89d09abffb3eb228c8c820bf08b8Mark Andrewsa242=Policy Client Clock Skew
764e2f3413ca89d09abffb3eb228c8c820bf08b8Mark Andrewsa242.help=Time in seconds which is allowed to accommodate the time difference between the OpenAM server machine and the remote policy client machine. (property name: com.sun.identity.policy.client.clockSkew) <br>Hot-swap: No
a06198688faca5c7bc1a35ec0ec18bc68c07691cEvan Hunta243=URL Policy Env GET Parameters
a06198688faca5c7bc1a35ec0ec18bc68c07691cEvan Hunta243.help=List of HTTP GET request parameters whose names and values will be set in the environment map for URL policy evaluation at OpenAM server.(property name: com.sun.identity.agents.config.policy.env.get.param) <br>Hot-swap: Yes <br> Examples: <br> name <br> phonenumber
a06198688faca5c7bc1a35ec0ec18bc68c07691cEvan Hunta244=URL Policy Env POST Parameters
50433a667cf0ed3ac7807768b745b0d870ff8c8bMark Andrewsa244.help=List of HTTP POST request parameters whose names and values will be set in the environment map for URL policy evaluation at OpenAM server.(property name: com.sun.identity.agents.config.policy.env.post.param) <br>Hot-swap: Yes <br> Examples: <br> name <br> phonenumber
50433a667cf0ed3ac7807768b745b0d870ff8c8bMark Andrewsa245=URL Policy Env jsession Parameters
3c12bec945ee71a38c5ba6f624abd12e2da7eea5Mark Andrewsa245.help=List of HTTP SESSION attributes whose names and values will be set in the environment map for URL policy evaluation at OpenAM server. (property name: com.sun.identity.agents.config.policy.env.jsession.param) <br>Hot-swap: Yes <br> Examples: <br> name <br> phonenumber
3c12bec945ee71a38c5ba6f624abd12e2da7eea5Mark Andrewsa246=Agent Configuration Change Notification
f44202ab640d22e17b4c74bdad7817622918bd27Mark Andrewsa246.help=Enable agent to receive notification messages from OpenAM server for configuration changes. (property name: com.sun.identity.agents.config.change.notification.enable) <br>Hot-swap: Yes
f44202ab640d22e17b4c74bdad7817622918bd27Mark Andrewsa247=Custom Properties
f44202ab640d22e17b4c74bdad7817622918bd27Mark Andrewsa247.help=Additional properties that allow users to augment the set of properties supported by agent. (property name: com.sun.identity.agents.config.freeformproperties) <br>Hot-swap: Yes <br> Examples: <br> customproperty=custom-value1 <br> customlist[0]=customlist-value-0 <br> customlist[1]=customlist-value-1 <br> custommap[key1]=custommap-value-1 <br> custommap[key2]=custommap-value-2
ad9772c559c6aa42f8930f4acf1a2d833a08040aMichał Kępieńa248=WebAuthentication Available
ad9772c559c6aa42f8930f4acf1a2d833a08040aMichał Kępieńa248.help=Enable agent to make programmatic authentication with the JBoss web container using WebAuthentication feature. (property name: com.sun.identity.agents.config.jboss.webauth.available) <br>Hot-swap: Yes
5d7d67f82a8913fae5f1098e111fe50edb86cd5bEvan Hunta254=OpenAM Logout URL
6216df5ccded056abd5db4abac4e5cbd78c73f45Evan Hunta254.help=OpenAM logout page URL. (property name: com.sun.identity.agents.config.logout.url) <br>Hot-swap: Yes <br> Example: <br> http://host:port/opensso/UI/Logout
6216df5ccded056abd5db4abac4e5cbd78c73f45Evan Hunta255=Logout URL Prioritized
6216df5ccded056abd5db4abac4e5cbd78c73f45Evan Hunta255.help=Specifies if failover sequence for Logout URLs should be prioritized as defined in the OpenAM Login URL list. (property name: com.sun.identity.agents.config.logout.url.prioritized) <br>Hot-swap: Yes
6216df5ccded056abd5db4abac4e5cbd78c73f45Evan Hunta256=Logout URL Probe
6216df5ccded056abd5db4abac4e5cbd78c73f45Evan Hunta256.help=Specifies if agent will check the availability of these urls before redirecting to them. (property name: com.sun.identity.agents.config.logout.url.probe.enabled) <br>Hot-swap: Yes
6216df5ccded056abd5db4abac4e5cbd78c73f45Evan Hunta257=Logout URL Probe Timeout
6216df5ccded056abd5db4abac4e5cbd78c73f45Evan Hunta257.help=The connect timeout value in milliseconds, if also Logout URL Probe is set to true. (property name: com.sun.identity.agents.config.logout.url.probe.timeout) <br>Hot-swap: Yes
56e30ebae6fdb0bdf94419caff3a43fb2d16c5dfEvan Hunta258=Possible XSS code elements
56e30ebae6fdb0bdf94419caff3a43fb2d16c5dfEvan Hunta258.help=If one of these strings occurs in the request, the client is redirected to an error page. (property name: com.sun.identity.agents.config.xss.code.elements) <br>Hot-swap: Yes
56e30ebae6fdb0bdf94419caff3a43fb2d16c5dfEvan Hunta259=XSS detection redirect URI
56e30ebae6fdb0bdf94419caff3a43fb2d16c5dfEvan Hunta259.help=An application-specific Map that identifies a URI of the customized page if XSS code has been deteced. (property name: com.sun.identity.agents.config.xss.redirect.uri) <br>Hot-swap: Yes <br>Examples: <br>To set a redirect target for application BankApp: enter BankApp in Map Key field, and enter a redirect URI in Corresponding Map Value field.
56e30ebae6fdb0bdf94419caff3a43fb2d16c5dfEvan Hunta260=Use HTTP-Redirect for composite advice
c85920c0b4b2d4dc605c0b1d355881925bf410afMark Andrewsa260.help=Configure remote policy client to use HTTP-redirect instead of HTTP-POST for composite advices. (property name: com.sun.identity.agents.config.policy.advice.use.redirect) <br>Hot-swap: Yes
c85920c0b4b2d4dc605c0b1d355881925bf410afMark Andrewsa261=Post Data Preservation enabled
0612274565d80e0ad87a19920e561cce5bddb05bEvan Hunta261.help=Post Data Preservation functionality basically stores any POST data before redirecting the user to the login screen and after successful login the agent will generate a page that autosubmits the same POST to the original URL. (property name: com.sun.identity.agents.config.postdata.preserve.enable)
0612274565d80e0ad87a19920e561cce5bddb05bEvan Hunta262=Missing PDP entry URI
0612274565d80e0ad87a19920e561cce5bddb05bEvan Hunta262.help=An application-specific URI Map that is used in case the referenced PDP entry cannot be found in the local cache (due to ttl). In such cases it will redirect to the specified URI, otherwise it will show a HTTP 403 Forbidden error. (property name: com.sun.identity.agents.config.postdata.preservce.cache.noentry.url)<br>Examples: <br>To set a redirect target for application BankApp: enter Bankapp in Map Key field and enter a redirect URI in corresponding Map Value field.
0612274565d80e0ad87a19920e561cce5bddb05bEvan Hunta263=PDP entry TTL
f592d2f76cac7115038124c510d2ba3050334b4dEvan Hunta263.help=This value tells how long a given POST entry should be stored in the local cache (in milliseconds), default value is 300000. (property name: com.sun.identity.agents.config.postdata.preserve.cache.entry.ttl)
f592d2f76cac7115038124c510d2ba3050334b4dEvan Hunta264=PDP Stickysession mode
f592d2f76cac7115038124c510d2ba3050334b4dEvan Hunta264.help=The PDP mechanism needs sticky loadbalancing, the URL mode will append a querystring, while the Cookie mode will create a cookie. (property name: com.sun.identity.agents.config.postdata.preserve.stickysession.mode)
4ee1fbe056e812e661b856b4b448296331a40249Michał Kępieńa267=PDP Stickysession key-value
4ee1fbe056e812e661b856b4b448296331a40249Michał Kępieńa267.help=The provided key-value pair will be used for adding to the URL or creating the cookie. <br>Example: <br>Set 'lb=server1' to append to the querystring or to have 'lb' cookie with 'server1' value. (property name: com.sun.identity.agents.config.postdata.preserve.stickysession.value)
1c8aa38b53a0494fc7d4c3439594d1913987f264Mark Andrews# WSS Agents properties
1c8aa38b53a0494fc7d4c3439594d1913987f264Mark Andrewsa301=Security Mechanism
1c8aa38b53a0494fc7d4c3439594d1913987f264Mark Andrewsa302=STS Configuration
1c8aa38b53a0494fc7d4c3439594d1913987f264Mark Andrewsa302.help=This is required if Security Mechanism is set to STSSecurity
43d53a4e4b2f0f9482485a8ab764137a9898ab32Evan Hunta303=Discovery Configuration
43d53a4e4b2f0f9482485a8ab764137a9898ab32Evan Hunta303.help=This is required if Security Mechanism is set to LibertyDiscoverySecurity
43d53a4e4b2f0f9482485a8ab764137a9898ab32Evan Hunta304=User Authentication Required
b1ce9b3d54cd072adb5275f08a9afac31cfb4c1cMichał Kępieńa305=Is Request Signed Enabled
b1ce9b3d54cd072adb5275f08a9afac31cfb4c1cMichał Kępieńa306=Is Request Header Encrypted
b1ce9b3d54cd072adb5275f08a9afac31cfb4c1cMichał Kępieńa307=Is Request Body Encrypted
b1ce9b3d54cd072adb5275f08a9afac31cfb4c1cMichał Kępieńa308=Is Response Signature Verified
b1ce9b3d54cd072adb5275f08a9afac31cfb4c1cMichał Kępieńa309=Is Response Encrypted
b1ce9b3d54cd072adb5275f08a9afac31cfb4c1cMichał Kępieńa309.help=Only Encrypted When Body is Encrypted.
b1ce9b3d54cd072adb5275f08a9afac31cfb4c1cMichał Kępieńa310=Preserve Security Headers in Message
b1ce9b3d54cd072adb5275f08a9afac31cfb4c1cMichał Kępieńa311=Use Default Keystore
b1ce9b3d54cd072adb5275f08a9afac31cfb4c1cMichał Kępieńa312=Location of Key Store
5fa4be41a383cfbf5e1d195b18c04bdbf5603710Evan Hunta313=Password of Key Store
5fa4be41a383cfbf5e1d195b18c04bdbf5603710Evan Hunta314=Password of Key
5fa4be41a383cfbf5e1d195b18c04bdbf5603710Evan Hunta315=Private Key Alias
2732d4922c2e72a399204320791acfd2fd3d6c7cMark Andrewsa315.help=Key to sign Web Service Request / Response.
2732d4922c2e72a399204320791acfd2fd3d6c7cMark Andrewsa316=Public Key Alias of Web Service Provider
2732d4922c2e72a399204320791acfd2fd3d6c7cMark Andrewsa316.help=Key to encrypt Web Service Request.
24ffba17f06746257d5c009ca8ebfe6043966d20Evan Hunta317=Web Service End Point
24ffba17f06746257d5c009ca8ebfe6043966d20Evan Hunta317.help=This end point is optional unless the web service provider is configured to use Liberty tokens.
24ffba17f06746257d5c009ca8ebfe6043966d20Evan Hunta318=Web Service Security Proxy End Point
24ffba17f06746257d5c009ca8ebfe6043966d20Evan Hunta318.help=This end point is optional unless it is configured to use web security proxy.
24ffba17f06746257d5c009ca8ebfe6043966d20Evan Hunta319=Liberty Service Type URN
21d58795b10a13fa7ac306f7146bdcb58b2e5165Mark Andrewsa319.help=This is optional until Security Mechanism is LibertyDiscoverySecurity.
d5bd8bb71a8970d4ebc4701b3e9ec3efef4954b7Evan Hunta320=Credential for User Token
d5bd8bb71a8970d4ebc4701b3e9ec3efef4954b7Evan Hunta321=Authentication Chain
d5bd8bb71a8970d4ebc4701b3e9ec3efef4954b7Evan Hunta322=Is Request Signature Verified
d5bd8bb71a8970d4ebc4701b3e9ec3efef4954b7Evan Hunta323.title=Is Request Encryption Enabled
d5bd8bb71a8970d4ebc4701b3e9ec3efef4954b7Evan Hunta323=Is Request Header Decrypted
ad1317338af79edad878c9c3e4361798503310baMark Andrewsa324=Is Request Body Decrypted
9519bb92d7f3f35015aecb84954dd21607cc2c80Evan Hunta325=Is Response Signed Enabled
9519bb92d7f3f35015aecb84954dd21607cc2c80Evan Hunta326=Is Response Encrypted
9519bb92d7f3f35015aecb84954dd21607cc2c80Evan Hunta326.help=Only Encrypted When Body is Encrypted.
1c81aef28ddf0905344cc58dd3ea0ca539ef1414Evan Hunta327=Private Key Type
1c81aef28ddf0905344cc58dd3ea0ca539ef1414Evan Hunta328=Public Key Alias of Web Service Client
1c81aef28ddf0905344cc58dd3ea0ca539ef1414Evan Hunta328.help=Key to encrypt Web Service Response
1c81aef28ddf0905344cc58dd3ea0ca539ef1414Evan Hunta329=Public Key Alias of Security Token Service
da1f585afa8c103508c759142d6aed4edae6936eMark Andrewsa330=Security Token Service End Point
da1f585afa8c103508c759142d6aed4edae6936eMark Andrewsa331=Security Token Service MEX End Point
da1f585afa8c103508c759142d6aed4edae6936eMark Andrewsa332=Discovery Service End Point
a8fa3e2d44ce6a8f4069d8f4229d29f5ba6a4a27Mukund Sivaramana333=Authentication Web Service End Point
a8fa3e2d44ce6a8f4069d8f4229d29f5ba6a4a27Mukund Sivaramana334=SAML Attribute Mapping
a8fa3e2d44ce6a8f4069d8f4229d29f5ba6a4a27Mukund Sivaramana335=SAML NameID Mapper Plugin
d71d41341d36ddfd347daab982f0cb85d3dd7c4eMark Andrewsa336=SAML Attributes Namespace
d71d41341d36ddfd347daab982f0cb85d3dd7c4eMark Andrewsa337=Include Memberships
d72952cf254b71c44e5e956a306016a5be9b9c38Mark Andrewsa338=Kerberos Domain Server
d72952cf254b71c44e5e956a306016a5be9b9c38Mark Andrewsa339=Kerberos Domain
aae171c5421ac2ba665ff122e004e753e62bac45Mark Andrewsa340=Kerberos Service Principal
aae171c5421ac2ba665ff122e004e753e62bac45Mark Andrewsa341=Kerberos Key Tab File
6b183c64a3281491f8232959a5ece303b4499706Mark Andrewsa342=Verify Kerberos Signature
6b183c64a3281491f8232959a5ece303b4499706Mark Andrewsa342.help=This is optional and must be enabled only when JDK6 is used.
5a8f2f0cd67a5dd93d95e6a0935d4805721c3a0bMichał Kępieńa343=Token Conversion Type
5a8f2f0cd67a5dd93d95e6a0935d4805721c3a0bMichał Kępieńa345=SAML11Token
5a8f2f0cd67a5dd93d95e6a0935d4805721c3a0bMichał Kępieńa346=SAML2Token
e2cc7418bf895d22854d84590b63905fac0d4b90Mark Andrewsa350= Kerberos Domain Server
e2cc7418bf895d22854d84590b63905fac0d4b90Mark Andrewsa351= Kerberos Domain
36ec0d374836d070ba05b495e6f0a27f60e94476Evan Hunta352= Kerberos Service Principal
36ec0d374836d070ba05b495e6f0a27f60e94476Evan Hunta353= Kerberos Ticket Cache Directory
36ec0d374836d070ba05b495e6f0a27f60e94476Evan Hunta354= Use Pass Through Security Token
e446fd29b9c6c4a7b6b5bb0aee3932578c346718Mukund Sivaramana354.help=This is valid for proxy web services client and will be used only when the SAML security mechanisms are enabled.
f896f7c8be894a737998b97008a1389e72972fcfMukund Sivaramana355= Signing Reference Type.
e446fd29b9c6c4a7b6b5bb0aee3932578c346718Mukund Sivaramana355.help=This applies only for X509 Token Security Mechanism
027a4a5b5d806290146ce4989d34be2c8a664e8cMukund Sivaramana356=Direct Reference
027a4a5b5d806290146ce4989d34be2c8a664e8cMukund Sivaramana357=KeyIdentifier Reference
b5252fcde512405a68dd4becfe683d9763bd0feaMukund Sivaramana358=X509 Issuer Serial Reference
b5252fcde512405a68dd4becfe683d9763bd0feaMukund Sivaramana359=Encryption Algorithm
b5252fcde512405a68dd4becfe683d9763bd0feaMukund Sivaramana360=Encryption Strength
b5252fcde512405a68dd4becfe683d9763bd0feaMukund Sivaramana360.help=For 3DES, the encryption strengths should be used are 0, 112, 168 and for AES they should be 128, 192 or 256.
b5252fcde512405a68dd4becfe683d9763bd0feaMukund Sivaramana361=WS-Trust Version
99056063905a9273ec59cf477ae747e0490182b7Mukund Sivaramana362=Detect User Token Replay
99056063905a9273ec59cf477ae747e0490182b7Mukund Sivaramana363=Detect Message Replay
99056063905a9273ec59cf477ae747e0490182b7Mukund Sivaramana364=Requested Key Type
62f2fefaec754e6a4841ff0e72726e6c0cd89c86Michał Kępieńa365=PublicKey
62f2fefaec754e6a4841ff0e72726e6c0cd89c86Michał Kępieńa366=SymmetricKey
62f2fefaec754e6a4841ff0e72726e6c0cd89c86Michał Kępieńa367=Requested Claims
62f2fefaec754e6a4841ff0e72726e6c0cd89c86Michał Kępieńa367.help=These are the requested attributes from the STS for an WSP.
b351a5864727a390e06d787e522b141ca760590fMichał Kępieńa368=DNS Claim
b351a5864727a390e06d787e522b141ca760590fMichał Kępieńa368.help=DNS Name that can uniquely identify the entity.
b351a5864727a390e06d787e522b141ca760590fMichał Kępieńa369=Signed Elements
b351a5864727a390e06d787e522b141ca760590fMichał Kępień# Web Agent Properties
b351a5864727a390e06d787e522b141ca760590fMichał Kępieńa400=Cookie Name
b351a5864727a390e06d787e522b141ca760590fMichał Kępieńa400.help=Name of the SSO Token cookie used between the OpenAM server and the Agent. (property name: com.sun.identity.agents.config.cookie.name)<br>Hot-swap: No
8008de0b11bacb3de3a1016c8c0a46f3c0653184Mark Andrewsa401=Cookie Security
8008de0b11bacb3de3a1016c8c0a46f3c0653184Mark Andrewsa401.help=Agent sends secure cookies if communication is secure. (property name: com.sun.identity.agents.config.cookie.secure) <br>Hot-swap: No
8008de0b11bacb3de3a1016c8c0a46f3c0653184Mark Andrewsa402=Ignore Path Info for Not Enforced URLs
8008de0b11bacb3de3a1016c8c0a46f3c0653184Mark Andrewsa402.help=Indicate whether the path info and query should be stripped from the the request URL before being compared with the URLs of the not enforced list when those URLs have a wildcard '*' character. (property name: com.sun.identity.agents.config.ignore.path.info.for.not.enforced.list) <br>Hot-swap: Yes
8008de0b11bacb3de3a1016c8c0a46f3c0653184Mark Andrewsa403=Encode special chars in Cookies
7b4bfc0201ffbcd64a336b99c945891808c44af0Mark Andrewsa403.help=Encode special chars in cookie by URL encoding. Useful when profile, session and response attributes contain special chars and attributes fetch mode is set to HTTP_COOKIE. (property name: com.sun.identity.agents.config.encode.cookie.special.chars.enable) <br>Hot-swap: Yes
7b4bfc0201ffbcd64a336b99c945891808c44af0Mark Andrewsa405=Enable Notifications
b815731d05220f932315eb33a97c6dc888c6a026Tinderbox Usera405.help=The notifications help in maintaining agent's sso, policy and configuration caches. (property name: com.sun.identity.agents.config.notification.enable) <br>Hot-swap: No
7cd594b8427fe742d44295790ba367e1de22a47dEvan Hunta406=Agent Notification URL
7cd594b8427fe742d44295790ba367e1de22a47dEvan Hunta406.help=URL used by agent to register notification listeners. (property name: com.sun.identity.client.notification.url) <br>Hot-swap: No
7cd594b8427fe742d44295790ba367e1de22a47dEvan Hunta407=URL Comparison Case Sensitivity Check
c76e8412f4ff4f5945157410312df2a8950f942dMark Andrewsa407.help=Enforces case sensitivity in both policy and not enforced url evaluation. (property name: com.sun.identity.agents.config.url.comparison.case.ignore) <br>Hot-swap: Yes
c76e8412f4ff4f5945157410312df2a8950f942dMark Andrewsa408=Policy Cache Polling Period
a2a0100e0fc73c0af67a7c9e3524816954448dc6Evan Hunta408.help=Polling interval in minutes to refresh agent's policy cache. (property name: com.sun.identity.agents.config.policy.cache.polling.interval) <br>Hot-swap: No
a2a0100e0fc73c0af67a7c9e3524816954448dc6Evan Hunta409=SSO Cache Polling Period
a2a0100e0fc73c0af67a7c9e3524816954448dc6Evan Hunta409.help=Polling interval in minutes to refresh agent's sso cache. (property name: com.sun.identity.agents.config.sso.cache.polling.interval) <br>Hot-swap: No
a2a0100e0fc73c0af67a7c9e3524816954448dc6Evan Hunta410=User ID Parameter
1feffc6fdb1ba386b22d45ea2d2f1613e717cb9eMark Andrewsa410.help=Agent sets value of User Id to REMOTE_USER server variable. (property name: com.sun.identity.agents.config.userid.param) <br>Hot-swap: Yes
1feffc6fdb1ba386b22d45ea2d2f1613e717cb9eMark Andrewsa411=User ID Parameter Type
1feffc6fdb1ba386b22d45ea2d2f1613e717cb9eMark Andrewsa411.help=User ID can be fetched from either SESSION and LDAP attributes. (property name: com.sun.identity.agents.config.userid.param.type) <br>Hot-swap: Yes
22bed621ef87bc8b6c1fea599b02c4b38dd6bf48Mark Andrewsa412=Profile Attribute Fetch Mode
22bed621ef87bc8b6c1fea599b02c4b38dd6bf48Mark Andrewsa412.help= (property name: com.sun.identity.agents.config.profile.attribute.fetch.mode) <br>Hot-swap: Yes
22bed621ef87bc8b6c1fea599b02c4b38dd6bf48Mark Andrewsa413=Profile Attribute Map
68d7ff133c9a1b8cfe683c70e997d83395ffd155Evan Hunta413.help=Maps the profile attributes to be populated under specific names for the currently authenticated user. (property name: com.sun.identity.agents.config.profile.attribute.mapping) <br>Hot-swap: Yes <br> Example: <br> To populate the value of profile attribute cn under name CUSTOM-Common-Name: enter cn in Map Key field, and enter CUSTOM-Common-Name in Corresponding Map Value field. <br> To populate the value of profile attribute mail under name CUSTOM-Email: enter mail in Map Key field, and enter CUSTOM-Email in Corresponding Map Value field.
68d7ff133c9a1b8cfe683c70e997d83395ffd155Evan Hunta414=Session Attribute Fetch Mode
68d7ff133c9a1b8cfe683c70e997d83395ffd155Evan Hunta414.help= (property name: com.sun.identity.agents.config.session.attribute.fetch.mode) <br>Hot-swap: Yes
e5f5675b1da287ed40aeff081ad2af86090e8d17Evan Hunta415=Session Attribute Map
e5f5675b1da287ed40aeff081ad2af86090e8d17Evan Hunta415.help=Maps the session attributes to be populated under specific names for the currently authenticated user. (property name: com.sun.identity.agents.config.session.attribute.mapping) <br>Hot-swap: Yes <br> Example: <br> To populate the value of session attribute UserToken under name CUSTOM-userid: enter UserToken in Map Key field, and enter CUSTOM-userid in Corresponding Map Value field.
e5f5675b1da287ed40aeff081ad2af86090e8d17Evan Hunta416=Response Attribute Fetch Mode
29f0ced781d745591fd058e530a68a281cd7a510Evan Hunta416.help= (property name: com.sun.identity.agents.config.response.attribute.fetch.mode) <br>Hot-swap: Yes
29f0ced781d745591fd058e530a68a281cd7a510Evan Hunta417=Response Attribute Map
29f0ced781d745591fd058e530a68a281cd7a510Evan Hunta417.help=Maps the policy response attributes to be populated under specific names for the currently authenticated user. (property name: com.sun.identity.agents.config.response.attribute.mapping) <br>Hot-swap: Yes <br> Example: <br> To populate the value of response attribute uid under name CUSTOM-USER-NAME: enter uid in Map Key field, and enter CUSTOM-USER-NAME in Corresponding Map Value field.
b9fd54f8d4572fe5dcaf9d4b74f6ecb8027cc450Evan Hunta418=Attributes Values Separator
b9fd54f8d4572fe5dcaf9d4b74f6ecb8027cc450Evan Hunta418.help=Separator character used by profile, session and response attribute maps. (property name: com.sun.identity.agents.config.attribute.multi_value_separator) <br>Hot-swap: Yes
b9fd54f8d4572fe5dcaf9d4b74f6ecb8027cc450Evan Hunta419=Load Balancer Setup
fcb5e646e4d775539e348fa21ba13307f2695bf5Mark Andrewsa419.help=Set to true if a load balancer is used for OpenAM services. (property name: com.sun.identity.agents.config.load.balancer.enable) <br>Hot-swap: No
fcb5e646e4d775539e348fa21ba13307f2695bf5Mark Andrewsa420=Ignore Server Check
fcb5e646e4d775539e348fa21ba13307f2695bf5Mark Andrewsa420.help=Agent uses this value to check OpenAM is up before doing a 302 redirect. (property name: com.sun.identity.agents.config.ignore.server.check) <br>Hot-swap: Yes
a22c3cf51567651f74aee5c263c597b8d752c2ccMichał Kępieńa421=Ignore Preferred Naming URL in Naming Request
a22c3cf51567651f74aee5c263c597b8d752c2ccMichał Kępieńa421.help=Agent uses this value to send preferred naming url in the naming request. (property name: com.sun.identity.agents.config.ignore.preferred.naming.url) <br>Hot-swap: Yes
a22c3cf51567651f74aee5c263c597b8d752c2ccMichał Kępieńa422=Polling Period for Primary Server
a22c3cf51567651f74aee5c263c597b8d752c2ccMichał Kępieńa422.help=Interval in minutes, agent polls to check the primary server is up and running. (property name: com.sun.identity.agents.config.poll.primary.server) <br>Hot-swap: No
b301c4293c082fcce4ec26218e6fad346976eb9eMark Andrewsa423=OpenAM Login URL
b301c4293c082fcce4ec26218e6fad346976eb9eMark Andrewsa423.help=OpenAM login page URL. (property name: com.sun.identity.agents.config.login.url) <br>Hot-swap: Yes <br> Example: <br> http://host:port/opensso/UI/Login
b301c4293c082fcce4ec26218e6fad346976eb9eMark Andrewsa426=Agent Deployment URI Prefix
5c4e0c7800b5c7783e7f8b9ce80a6f8dc47f8856Mark Andrewsa426.help=(property name: com.sun.identity.agents.config.agenturi.prefix)<br>Hot-swap: No
5c4e0c7800b5c7783e7f8b9ce80a6f8dc47f8856Mark Andrewsa427=Agent Locale
5c4e0c7800b5c7783e7f8b9ce80a6f8dc47f8856Mark Andrewsa427.help=The default locale for the product. (property name: com.sun.identity.agents.config.locale) <br>Hot-swap: No
6e1f755f19ef244422e1efa4551fe23775e1a38cMark Andrewsa428=SSO Only Mode
6e1f755f19ef244422e1efa4551fe23775e1a38cMark Andrewsa428.help=Agent will just enforce authentication (SSO), but no authorization for policies. (property name: com.sun.identity.agents.config.sso.only) <br>Hot-swap: Yes
6e1f755f19ef244422e1efa4551fe23775e1a38cMark Andrewsa429=Resources Access Denied URL
435a7cd2293dfa9264678508762ab9acb8d41e50Mark Andrewsa429.help=The URL of the customized access denied page. (property name: com.sun.identity.agents.config.access.denied.url) <br>Hot-swap: Yes
435a7cd2293dfa9264678508762ab9acb8d41e50Mark Andrewsa430=FQDN Check
435a7cd2293dfa9264678508762ab9acb8d41e50Mark Andrewsa430.help=Enables checking of fqdn default value and fqdn map values. (property name: com.sun.identity.agents.config.fqdn.check.enable) <br>Hot-swap: Yes
b7a823a402eb5c4e99f283e58d778a903d2e72f5Michał Kępieńa431=FQDN Default
b7a823a402eb5c4e99f283e58d778a903d2e72f5Michał Kępieńa431.help=Fully qualified hostname that the users should use in order to access resources. (property name: com.sun.identity.agents.config.fqdn.default) <br>Hot-swap: Yes
b7a823a402eb5c4e99f283e58d778a903d2e72f5Michał Kępieńa432=FQDN Virtual Host Map
c46c8e5c56ec4e81a39632e0036f20a6a3c18b8bMark Andrewsa432.help=Enables virtual hosts, partial hostname and IP address to access protected resources. Maps invalid key to valid value. (property name: com.sun.identity.agents.config.fqdn.mapping) <br>Hot-swap: Yes <br> Example: <br> To map myserver to myserver.mydomain.com: enter myserver in Map Key field, and enter myserver.mydomain.com in Corresponding Map Value field.
031bc55634f443c7c70fbf44c6ac6d8abe72f22bEvan Hunta433=Cookie Reset
031bc55634f443c7c70fbf44c6ac6d8abe72f22bEvan Hunta433.help=Agent reset cookies in the response before redirecting to authentication. (property name: com.sun.identity.agents.config.cookie.reset.enable) <br>Hot-swap: Yes
031bc55634f443c7c70fbf44c6ac6d8abe72f22bEvan Hunta434=Cookies Reset Name List
a64daf673deff2358a91bee26bbf2bf874f47c6eMark Andrewsa434.help=List of cookies in the format: name[=value][;Domain=value]. (property name: com.sun.identity.agents.config.cookie.reset) <br>Hot-swap: Yes <br> Examples: <br> Cookie1 <br> Cookie2=value;Domain=subdomain.domain.com
a64daf673deff2358a91bee26bbf2bf874f47c6eMark Andrewsa435=Cross Domain SSO
a64daf673deff2358a91bee26bbf2bf874f47c6eMark Andrewsa435.help=Enables Cross-Domain Single Sign On. (property name: com.sun.identity.agents.config.cdsso.enable) <br>Hot-swap: Yes
0aadc6dd7b719539445e7a0a058b15dd9d982a9bMichał Kępieńa436=Anonymous User Default Value
0aadc6dd7b719539445e7a0a058b15dd9d982a9bMichał Kępieńa436.help=User id of unauthenticated users. (property name: com.sun.identity.agents.config.anonymous.user.id) <br>Hot-swap: Yes
0aadc6dd7b719539445e7a0a058b15dd9d982a9bMichał Kępieńa437=Anonymous User
0aadc6dd7b719539445e7a0a058b15dd9d982a9bMichał Kępieńa437.help=Enable/Disable REMOTE_USER processing for anonymous users. (property name: com.sun.identity.agents.config.anonymous.user.enable) <br>Hot-swap: Yes
0aadc6dd7b719539445e7a0a058b15dd9d982a9bMichał Kępieńa438=Not Enforced URLs
f20ff8b74d21fa3e3f071544f6fd060d015cf27eMichał Kępieńa438.help=List of urls for which no authentication required. (property name: com.sun.identity.agents.config.notenforced.url) <br>Hot-swap: Yes <br> Example: <br> http://myagent.mydomain.com/*.gif
f20ff8b74d21fa3e3f071544f6fd060d015cf27eMichał Kępieńa439=Invert Not Enforced URLs
f20ff8b74d21fa3e3f071544f6fd060d015cf27eMichał Kępieńa439.help=Only not enforced list of urls will be enforced. (property name: com.sun.identity.agents.config.notenforced.url.invert) <br>Hot-swap: Yes
7ff682f3c628d785048bbe0242e6a32ea26c6747Michał Kępieńa440=Not Enforced Client IP List
7ff682f3c628d785048bbe0242e6a32ea26c6747Michał Kępieńa440.help=No authentication and authorization are required for the requests coming from these client IP addresses. (property name: com.sun.identity.agents.config.notenforced.ip) <br>Hot-swap: Yes <br> Examples: <br> 192.18.145.* <br> 192.18.146.123
7ff682f3c628d785048bbe0242e6a32ea26c6747Michał Kępieńa441=POST Data Preservation
7ff682f3c628d785048bbe0242e6a32ea26c6747Michał Kępieńa441.help=Enables POST data preservation.(property name: com.sun.identity.agents.config.postdata.preserve.enable) <br> Note that this feature is not supported in all the web agents. Please refer individual agents documentation for more details. <br>Hot-swap: Yes
e02fa56849131911e9554133b17a5325b37d0828Michał Kępieńa442=POST Data Entries Cache Period
e02fa56849131911e9554133b17a5325b37d0828Michał Kępieńa442.help=POST cache entry lifetime in minutes. (property name: com.sun.identity.agents.config.postcache.entry.lifetime) <br>Hot-swap: Yes
e02fa56849131911e9554133b17a5325b37d0828Michał Kępieńa443=CDSSO Servlet URL
abcea74291c37abf68be4e06997c59e5494f06adMark Andrewsa443.help=List of URLs of the available CDSSO controllers that may be used by the Agent for CDSSO processing. (property name: com.sun.identity.agents.config.cdsso.cdcservlet.url) <br>Hot-swap: Yes <br> Example: <br> http://host:port/opensso/cdcservlet
abcea74291c37abf68be4e06997c59e5494f06adMark Andrewsa444=Cookies Domain List
abcea74291c37abf68be4e06997c59e5494f06adMark Andrewsa444.help=List of domains in which cookies have to be set in CDSSO.(property name: com.sun.identity.agents.config.cdsso.cookie.domain) <br>Hot-swap: Yes <br> Example: <br> .sun.com
d748d8a4afc200800f6289683361a393b15ba6bfMichał Kępieńa445=Client IP Validation
d748d8a4afc200800f6289683361a393b15ba6bfMichał Kępieńa445.help=This validates if the subsequent browser requests come from the same ip address that the SSO token is initially issued against. (property name: com.sun.identity.agents.config.client.ip.validation.enable) <br>Hot-swap: Yes
d748d8a4afc200800f6289683361a393b15ba6bfMichał Kępieńa446=Profile Attributes Cookie Prefix
cbb33c87f4bcf415c840acb61c9d4642c3c2a8e0Michał Kępieńa446.help=Sets cookie prefix in the attributes headers. (property name: com.sun.identity.agents.config.profile.attribute.cookie.prefix) <br>Hot-swap: Yes
cbb33c87f4bcf415c840acb61c9d4642c3c2a8e0Michał Kępieńa447=Profile Attributes Cookie Maxage
cbb33c87f4bcf415c840acb61c9d4642c3c2a8e0Michał Kępieńa447.help=Maxage of attributes cookie headers. (property name: com.sun.identity.agents.config.profile.attribute.cookie.maxage) <br>Hot-swap: Yes
324b00ad4950b00346f5ba2382a51709bd82afe9Mark Andrewsa448=Logout URL List
324b00ad4950b00346f5ba2382a51709bd82afe9Mark Andrewsa448.help=List of application logout URLs. User gets logged out from OpenAM session when these urls accessed. (property name: com.sun.identity.agents.config.agent.logout.url). If this property is used, user should specify a value for the below Logout Redirect URL property.<br>Hot-swap: Yes <br> Example: <br> http://myagent.mydomain.com/logout.html
296f5969a8dd6e3d1bb3761569c6a7070abd2e47Tinderbox Usera449=Logout Cookies List for Reset
4dc6fa1e92af7a62875b6f6f2931beefd58cb4faEvan Hunta449.help=Any cookies to be reset upon logout in the same format as cookie reset list. (property name: com.sun.identity.agents.config.logout.cookie.reset) <br>Hot-swap: Yes <br> Cookie1 <br> Cookie2=value;Domain=subdomain.domain.com
4dc6fa1e92af7a62875b6f6f2931beefd58cb4faEvan Hunta450=Fetch Policies from Root Resource
4dc6fa1e92af7a62875b6f6f2931beefd58cb4faEvan Hunta450.help=Agent caches policy decision of the resource and all resources from the root of the resource down. (property name: com.sun.identity.agents.config.fetch.from.root.resource) <br>Hot-swap: No
b81b178ab919bdbd92021cfc7e6e8d971cd38e83Mark Andrewsa451=Retrieve Client Hostname
b81b178ab919bdbd92021cfc7e6e8d971cd38e83Mark Andrewsa451.help=Gets the client's hostname through DNS reverse lookup for use in policy evaluation. (property name: com.sun.identity.agents.config.get.client.host.name) <br>Hot-swap: Yes
b81b178ab919bdbd92021cfc7e6e8d971cd38e83Mark Andrewsa452=Native Encoding of Profile Attributes
bf216589c1a81e4431653a145b252b6ce367d7cdMark Andrewsa452.help=Agent encodes the ldap header values in the default encoding of OS locale. If false, UTF-8 gets used. (property name: com.sun.identity.agents.config.convert.mbyte.enable) <br>Hot-swap: Yes
bf216589c1a81e4431653a145b252b6ce367d7cdMark Andrewsa453=Encode URL's Special Characters
7dbeb5e7f067585abfb12fac314a0d2a8f0dd040Evan Hunta453.help=Encodes the url which has special characters before doing policy evaluation. (property name: com.sun.identity.agents.config.encode.url.special.chars.enable) <br>Hot-swap: Yes
7dbeb5e7f067585abfb12fac314a0d2a8f0dd040Evan Hunta454=Ignore Path Info in Request URL
6e10f87913db176724e89b52e686b0992898da75Mukund Sivaramana454.help=The path info will be stripped from the request URL while doing Not Enforced List check and url policy evaluation if the value is set to true. (property name: com.sun.identity.agents.config.ignore.path.info) <br>Hot-swap: Yes
6e10f87913db176724e89b52e686b0992898da75Mukund Sivaramana455=Override Request URL Protocol
6e10f87913db176724e89b52e686b0992898da75Mukund Sivaramana455.help=Set to true if the agent is sitting behind a ssl/tls off-loader, load balancer, or proxy to override the protocol with the value from the property com.sun.identity.agents.config.agenturi.prefix. (property name: com.sun.identity.agents.config.override.protocol) <br>Hot-swap: Yes
6e10f87913db176724e89b52e686b0992898da75Mukund Sivaramana456=Override Request URL Host
6e10f87913db176724e89b52e686b0992898da75Mukund Sivaramana456.help=Set to true if the agent is sitting behind a ssl/tls off-loader, load balancer, or proxy to override the host with the value from the property com.sun.identity.agents.config.agenturi.prefix. (property name: com.sun.identity.agents.config.override.host) <br>Hot-swap: Yes
37f6466aa327a5b444e41c8cb57ab5caacfe6279Evan Hunta457=Override Request URL Port
37f6466aa327a5b444e41c8cb57ab5caacfe6279Evan Hunta457.help=Set to true if the agent is sitting behind a ssl/tls off-loader, load balancer, or proxy to override the port with the value from the property com.sun.identity.agents.config.agenturi.prefix. (property name: com.sun.identity.agents.config.override.port) <br>Hot-swap: Yes
36babd3e630f507843c423207cbbbd4758d7cffaTinderbox Usera458=Override Notification URL
37f6466aa327a5b444e41c8cb57ab5caacfe6279Evan Hunta458.help=Set to true if the agent is sitting behind a ssl/tls off-loader, load balancer, or proxy to override the URL with the value from the property com.sun.identity.agents.config.agenturi.prefix. (property name: com.sun.identity.agents.config.override.notification.url) <br>Hot-swap: Yes
4162d3b36d1a3c25724c7e37ce839f67b2352bbbMark Andrewsa459=Agent Connection Timeout
4162d3b36d1a3c25724c7e37ce839f67b2352bbbMark Andrewsa459.help=Timeout period in seconds for an agent connection with OpenAM auth server. (property name: com.sun.identity.agents.config.auth.connection.timeout) <br>Hot-swap: Yes
4162d3b36d1a3c25724c7e37ce839f67b2352bbbMark Andrewsa460=Polling Period for Primary Server
ce6f0c122140647b5652c0d4de523c994fcfea08Michał Kępieńa460.help=Interval in minutes, agent polls to check the primary server is up and running. (property name: com.sun.identity.agents.config.poll.primary.server) <br>Hot-swap: No
ce6f0c122140647b5652c0d4de523c994fcfea08Michał Kępieńa461=Agent Locale
f72f5879424ce4081893b306b8c31f29fe9205e0Evan Hunta461.help=The default locale for the product. (property name: com.sun.identity.agents.config.locale) <br>Hot-swap: No
f72f5879424ce4081893b306b8c31f29fe9205e0Evan Hunta462=Override Proxy Server's Host and Port
f72f5879424ce4081893b306b8c31f29fe9205e0Evan Hunta462.help=(property name: com.sun.identity.agents.config.proxy.override.host.port) <br>Hot-swap: No
f72f5879424ce4081893b306b8c31f29fe9205e0Evan Hunta463=Configuration Reload Interval
f72f5879424ce4081893b306b8c31f29fe9205e0Evan Hunta463.help=Interval in minutes to fetch agent configuration from OpenAM. (property name: com.sun.identity.agents.config.polling.interval) <br>Hot-swap: No
1073e2001caee13cc1fa52de97feddd633d50fd8Evan Hunta464=Configuration Cleanup Interval
1073e2001caee13cc1fa52de97feddd633d50fd8Evan Hunta464.help=Interval in minutes to cleanup old agent configuration entries. (property name: com.sun.identity.agents.config.cleanup.interval) <br>Hot-swap: No
1073e2001caee13cc1fa52de97feddd633d50fd8Evan Hunta465=Custom Properties
1073e2001caee13cc1fa52de97feddd633d50fd8Evan Hunta465.help=Additional properties that allow users to augment the set of properties supported by agent. (property name: com.sun.identity.agents.config.freeformproperties) <br>Hot-swap: Yes <br> Examples: <br> customproperty=custom-value1 <br> customlist[0]=customlist-value-0 <br> customlist[1]=customlist-value-1 <br> custommap[key1]=custommap-value-1 <br> custommap[key2]=custommap-value-2
1073e2001caee13cc1fa52de97feddd633d50fd8Evan Hunta467=Fetch Attributes for Not Enforced URLs
78608b0a454246d0e1e0169f1d671b8427e48199Francis Duponta467.help=Agent fetches profile attributes for not enforced urls by doing policy evaluation. (property name: com.sun.identity.agents.config.notenforced.url.attributes.enable) <br>Hot-swap: Yes
fe6d2fd8338d6f6ac4c79bea9a8daad903460040Evan Hunta477=Authentication Type
fe6d2fd8338d6f6ac4c79bea9a8daad903460040Evan Hunta477.help=(property name: com.sun.identity.agents.config.iis.auth.type)
05a456499af940762d6658366abafb220c5053ccMark Andrewsa478=Replay Password Key
05a456499af940762d6658366abafb220c5053ccMark Andrewsa478.help=DES key for decrypting the basic authentication password in the session. (property name: com.sun.identity.agents.config.replaypasswd.key)
05a456499af940762d6658366abafb220c5053ccMark Andrewsa479=Filter Priority
cb4e0ef4e2c8a942f99af6ecc6aa564c903b00a0Mark Andrewsa479.help=The loading priority of filter.(property name: com.sun.identity.agents.config.iis.filter.priority)
cb4e0ef4e2c8a942f99af6ecc6aa564c903b00a0Mark Andrewsa480=Filter configured with OWA
cb4e0ef4e2c8a942f99af6ecc6aa564c903b00a0Mark Andrewsa480.help=Set to true if the IIS agent filter is configured for OWA.(property name: com.sun.identity.agents.config.iis.owa.enable)
cb4e0ef4e2c8a942f99af6ecc6aa564c903b00a0Mark Andrewsa481=Change URL Protocol to https
e3efc855f9f0acc9b14bb8e9c833e0fa209068b6Mark Andrewsa481.help=If true, avoids IE6 security pop-ups. (property name: com.sun.identity.agents.config.iis.owa.enable.change.protocol)
e3efc855f9f0acc9b14bb8e9c833e0fa209068b6Mark Andrewsa482=Idle Session Timeout Page URL
e3efc855f9f0acc9b14bb8e9c833e0fa209068b6Mark Andrewsa482.help=URL of the local idle session timeout page. (property name: com.sun.identity.agents.config.iis.owa.enable.session.timeout.url)
e56c0854589d936f911e0aac2f2bf53cbc8a6af7Michał Kępieńa483=Check User in Domino Database
e56c0854589d936f911e0aac2f2bf53cbc8a6af7Michał Kępieńa483.help=If true, agent checks user existence in Domino name database. (property name: com.sun.identity.agents.config.domino.check.name.database)
e56c0854589d936f911e0aac2f2bf53cbc8a6af7Michał Kępieńa484=Use LTPA token
6727802528c27484e0d36d70f0b936022d3226e3Michał Kępieńa484.help=Set to true if agent needs to use LTPA Token. (property name: com.sun.identity.agents.config.domino.ltpa.enable)
6727802528c27484e0d36d70f0b936022d3226e3Michał Kępieńa485=LTPA Token Cookie Name
6727802528c27484e0d36d70f0b936022d3226e3Michał Kępieńa485.help=The name of the cookie that contains the LTPA token. (property name: com.sun.identity.agents.config.domino.ltpa.cookie.name)
6727802528c27484e0d36d70f0b936022d3226e3Michał Kępieńa486=LTPA Token Configuration Name
4d41be5f9e86c11a6f00e2b005cfc5abae2c1ab3Mark Andrewsa486.help=The configuration name that the agent uses in order to employ the LTPA token mechanism. (property name: com.sun.identity.agents.config.domino.ltpa.config.name)
4d41be5f9e86c11a6f00e2b005cfc5abae2c1ab3Mark Andrewsa487=LTPA Token Organization Name
bfde61d5194a534d800f3b90008d1f52261922c5Mark Andrewsa487.help=The organization name to which the LTPA token belongs. (property name: com.sun.identity.agents.config.domino.ltpa.org.name)
bfde61d5194a534d800f3b90008d1f52261922c5Mark Andrewsa488=Policy Clock Skew
bfde61d5194a534d800f3b90008d1f52261922c5Mark Andrewsa488.help=Time in seconds used adjust time difference between Agent machine and OpenAM. Clock skew in seconds = AgentTime - OpenAMServerTime. (property name: com.sun.identity.agents.config.policy.clock.skew) <br>Hot-swap: No
42ae02626d05921ca7508ae6f9c48ea699596bc6Mark Andrewsa489=Audit Access Types
6b56350522d18f10edbf2d3778cd0fea74e4f3d2Mark Andrewsa489.help=Types of messages to log based on user URL access attempts. (property name: com.sun.identity.agents.config.audit.accesstype) <br>Hot-swap: Yes
6b56350522d18f10edbf2d3778cd0fea74e4f3d2Mark Andrewsa490=Audit Log Location
42ae02626d05921ca7508ae6f9c48ea699596bc6Mark Andrewsa490.help=Specifies where audit messages should be logged. (property name: com.sun.identity.agents.config.log.disposition) <br>Hot-swap: Yes
41caed6e2d7e9caace30e6c59f199ab6bd438f01Mark Andrewsa491=Remote Log Filename
16f43564c6875e2bedd346c18c494933ad51e4faMukund Sivaramana491.help=Name of file stored on OpenAM server that contains agent audit messages. (property name: com.sun.identity.agents.config.remote.logfile) <br>Hot-swap: No
16f43564c6875e2bedd346c18c494933ad51e4faMukund Sivaramana492=Remote Audit Log Interval
16f43564c6875e2bedd346c18c494933ad51e4faMukund Sivaramana492.help=Periodic interval in minutes in which audit log messages are sent to remote log file. (property name: com.sun.identity.agents.config.remote.log.interval) <br>Hot-swap: No
16f43564c6875e2bedd346c18c494933ad51e4faMukund Sivaramana493=Rotate Local Audit Log
16f43564c6875e2bedd346c18c494933ad51e4faMukund Sivaramana493.help=Flag to indicate that audit log files should be rotated when reaching a certain size. (property name: com.sun.identity.agents.config.local.log.rotate) <br>Hot-swap: Yes
72b322cde0e51c4c87df0c9e3226deac95dfb4ceMark Andrewsa494=Local Audit Log Rotation Size
72b322cde0e51c4c87df0c9e3226deac95dfb4ceMark Andrewsa494.help=Size limit in bytes when a local audit log file is rotated to a new file. (property name: com.sun.identity.agents.config.local.log.size) <br>Hot-swap: Yes
28ea558bc80f75e46d77ea0533232bb9d4e644f7Mark Andrewsa495=Agent Debug Level
28ea558bc80f75e46d77ea0533232bb9d4e644f7Mark Andrewsa495.help=Agent debug level. (property name: com.sun.identity.agents.config.debug.level) <br>Hot-swap: Yes
8ed6c49f1a7f06d3ed39bee7731ff91d8dfd8dc7Mark Andrewsa496=Agent Debug File Rotation
8ed6c49f1a7f06d3ed39bee7731ff91d8dfd8dc7Mark Andrewsa496.help=Debug file gets rotated based on the size specified. (property name: com.sun.identity.agents.config.debug.file.rotate) <br>Hot-swap: Yes
447dfe4f115b17274eabf1087f035634e1129bb9Mark Andrewsa497=Agent Debug File Size
565535d1820c63c64ec3c89e1f4815c326aed7aeEvan Hunta497.help=Agent debug file size in bytes. (property name: com.sun.identity.agents.config.debug.file.size) <br>Hot-swap: Yes
6045abbc9a0d7d449a13b6fbfbf32d419b6bee96Mark Andrewsa498=Attribute Multi Value Separator
6045abbc9a0d7d449a13b6fbfbf32d419b6bee96Mark Andrewsa498.help=Specifies separator for multiple values. Applies to all types of attributes i.e. profile, session and response attributes. (property name: com.sun.identity.agents.config.attribute.multi.value.separator) <br>Hot-swap: Yes
f7d148398ca4511551c737e655b15f7d0d59a783Mark Andrewsa499=Logout Redirect URL
f7d148398ca4511551c737e655b15f7d0d59a783Mark Andrewsa499.help= User gets redirected to this url after logout.(property name: com.sun.identity.agents.config.logout.redirect.url). This property should be specified along with the above Logout URL List.<br>Hot-swap: Yes
3a84275b10ab16965e86f6ca97e70c1bdca885a0Mark Andrews# 2.2 Policy Agent properties
3a84275b10ab16965e86f6ca97e70c1bdca885a0Mark Andrewsa500=Description
3a84275b10ab16965e86f6ca97e70c1bdca885a0Mark Andrewsa501=Agent Key Value(s)
398834f7559617bdfd6c10ba555609a2f306e3d4Mark Andrewsa501.help=Set the agent properties with a key/value pair. This property is used by OpenAM to receive agent requests for credential assertions about users. Currently, only one property is valid and all other properties will be ignored. Use the following format: <br> agentRootURL=protocol://hostname:port/ <br> The entry must be precise and agentRootURL is case sensitive.
398834f7559617bdfd6c10ba555609a2f306e3d4Mark Andrews# Agent Authenticator properties
398834f7559617bdfd6c10ba555609a2f306e3d4Mark Andrewsa600=Agent Profiles allowed to Read.
398834f7559617bdfd6c10ba555609a2f306e3d4Mark Andrewsa601=Agent Root URL for CDSSO
28061f80b698171892e81c0856bc722190947998Evan Hunta601.help=The agent root URL for CDSSO. The valid value is in the following format: <br>protocol://hostname:port/<br> The protocol represents the protocol used, such as http or https. The hostname represents the host name of the machine on which the agent resides. The port represents the port number on which the agent is installed. The slash following the port number is required.
28061f80b698171892e81c0856bc722190947998Evan Hunt# OAuth 2.0 Client properties
a785bf2c39c6f223a93c27bbff81591b38095577Mark Andrewsa700=Client password
a785bf2c39c6f223a93c27bbff81591b38095577Mark Andrewsa700.help=Client password. Used when the client authenticates to OpenAM. (property name:
a03f4b1ea4f1a4a70963fbeb606841c217f9e5f3Evan Hunta701=Client type
a03f4b1ea4f1a4a70963fbeb606841c217f9e5f3Evan Hunta701.help=Type of OAuth 2.0 client. Confidential clients can keep their password secret, and are typically web apps or other server-based clients. Public clients run the risk of exposing their password to a host or user agent, such as rich browser applications or desktop clients.
a03f4b1ea4f1a4a70963fbeb606841c217f9e5f3Evan Hunta702=Confidential
d315545e6db6792692fe2dcb788ac6717a33b75fEvan Hunta704=Redirection URI's
d315545e6db6792692fe2dcb788ac6717a33b75fEvan Hunta704.help=Redirection URI's (optional for confidential clients). Complete URI's or URI's consisting of protocol + authority + path are registered so that the OAuth 2.0 provider can trust that tokens are sent to trusted entities. If multiple URI's are registered, the client MUST specify the URI that the user should be redirected to following approval.
d315545e6db6792692fe2dcb788ac6717a33b75fEvan Hunta705=Scope(s)
d315545e6db6792692fe2dcb788ac6717a33b75fEvan Hunta705.help=Scope(s). Scopes are strings that are presented to the user for approval and included in tokens so that the protected resource may make decisions about what to give access to. Scopes may be entered as simple strings or pipe separated strings representing the internal scope name, locale, and localized description; e.g. "read|en|Permission to view email messages in your account"
00f131293520b70728cd48840e09953fa45a745bMark Andrewsa706=Display name
00f131293520b70728cd48840e09953fa45a745bMark Andrewsa706.help=The name as displayed to users during approval. The name may be entered as a single string or as pipe separated strings for locale and localized name; e.g. "en|The ExampleCo Intranet".
00f131293520b70728cd48840e09953fa45a745bMark Andrewsa707=Display description
b2e71853060a384070d422afda6d1c692ff608e3Mark Andrewsa707.help=A description of the client or other information that may be relevant to the resource owner when considering approval. The description may be entered as a single string or as pipe separated strings for locale and localized name; e.g. "en|The company intranet is requesting the following access permission".
b2e71853060a384070d422afda6d1c692ff608e3Mark Andrewsa708=Default Scope(s)
b2e71853060a384070d422afda6d1c692ff608e3Mark Andrewsa708.help=Default Scope(s). Scopes Scopes automatically given to tokens. Default Scopes may be entered as simple strings or pipe separated strings representing the internal scope name, locale, and localized description; e.g. "read|en|Permission to view email messages in your account"
b2e71853060a384070d422afda6d1c692ff608e3Mark Andrewsa709=Token Validation Type
42c1acfa478aacfbda2d298cf74a137de2df4b87Michał Kępieńa709.help=The type of token this client expects to recieve.
214b53880b6d77359f60feccb91bd2589059300aEvan Hunta712=SAML 2.0
214b53880b6d77359f60feccb91bd2589059300aEvan Hunta713=Automatically Approve Client
214b53880b6d77359f60feccb91bd2589059300aEvan Hunta713.help=Whether this client needs the resource owner to hit approve to allow the token access to a protected resource.
dd5375de0a7a515ee4fb2fd217e9577259d38c07Mark Andrews# UI properties
3a58e1fefb0a9fd5dab11f271a320c6b90473f76Mukund Sivaramanwss.header.signencrypt=Signing and Encryption
3440cf9c60cd5d35634e7f274fd3eccbba2173a5Evan Huntwss.header.kerberos=Kerberos Configuration
541ce84ff2f0c54340da8b3e04c5686ed82420e1Mark Andrewsweb.services.profile.username-token-header=Credential for User Token
fb9ef31fed818384ef8997f2dc5f27252c6f767eEvan Huntkeystore.information=Location of Key Store (Mandatory if Use Default Keystore is not checked).
fb9ef31fed818384ef8997f2dc5f27252c6f767eEvan Huntentity.attribute.label.uuid=Universal Identifier
823ccd1f02802966395d58c916e9f988320fd6eeEvan Huntweb.services.profile.usernametokenpassword=Password
b6fa637fc8c92f42a21e6f97259598968717af3dEvan Huntwsp.encryption.is.request.decrypted=Is Request Decrypted
b6fa637fc8c92f42a21e6f97259598968717af3dEvan Huntwsc.is.response.encrypted=Is Response Decrypted
b6fa637fc8c92f42a21e6f97259598968717af3dEvan Huntsts.encryption.is.response.decrypted=Is Response Decrypted