amAuth.xml revision 412e1e94939e06eaec3523eafe3e1130349f9486
70N/A<?xml version='1.0' encoding="ISO-8859-1"?>
70N/A
1276N/A<!--
70N/A DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
1634N/A
70N/A Copyright (c) 2006 Sun Microsystems Inc. All Rights Reserved
70N/A
919N/A The contents of this file are subject to the terms
919N/A of the Common Development and Distribution License
919N/A (the License). You may not use this file except in
919N/A compliance with the License.
919N/A
919N/A You can obtain a copy of the License at
919N/A https://opensso.dev.java.net/public/CDDLv1.0.html or
919N/A opensso/legal/CDDLv1.0.txt
919N/A See the License for the specific language governing
919N/A permission and limitations under the License.
919N/A
919N/A When distributing Covered Code, include this CDDL
919N/A Header Notice in each file and include the License file
919N/A at opensso/legal/CDDLv1.0.txt.
919N/A If applicable, add the following below the CDDL Header,
919N/A with the fields enclosed by brackets [] replaced by
919N/A your own identifying information:
70N/A "Portions Copyrighted [year] [name of copyright owner]"
70N/A
70N/A $Id: amAuth.xml,v 1.16 2009/11/25 12:06:32 manish_rustagi Exp $
70N/A
493N/A Portions Copyrighted 2011-2016 ForgeRock AS.
70N/A-->
70N/A
1634N/A<!DOCTYPE ServicesConfiguration
70N/A PUBLIC "=//iPlanet//Service Management Services (SMS) 1.0 DTD//EN"
911N/A "jar://com/sun/identity/sm/sms.dtd">
1634N/A
1634N/A<ServicesConfiguration>
1634N/A <Service name="iPlanetAMAuthService" version="1.0">
911N/A <Schema
70N/A serviceHierarchy="/DSAMEConfig/authentication/iPlanetAMAuthService"
1634N/A i18nFileName="amAuth"
1634N/A revisionNumber="60"
1634N/A i18nKey="iplanet-am-auth-service-description"
70N/A resourceName="EMPTY">
70N/A <Global>
70N/A <AttributeSchema name="iplanet-am-auth-authenticators"
70N/A type="list"
70N/A syntax="string"
70N/A i18nKey="a117"
493N/A resourceName="authenticators">
70N/A <DefaultValues>
70N/A <Value>com.sun.identity.authentication.modules.ldap.LDAP</Value>
70N/A <Value>com.sun.identity.authentication.modules.ad.AD</Value>
70N/A <Value>com.sun.identity.authentication.modules.membership.Membership</Value>
70N/A <Value>com.sun.identity.authentication.modules.anonymous.Anonymous</Value>
970N/A <Value>com.sun.identity.authentication.modules.cert.Cert</Value>
970N/A <Value>com.sun.identity.authentication.modules.application.Application</Value>
970N/A <Value>com.sun.identity.authentication.modules.httpbasic.HTTPBasic</Value>
70N/A <Value>com.sun.identity.authentication.modules.nt.NT</Value>
<Value>com.sun.identity.authentication.modules.jdbc.JDBC</Value>
<Value>com.sun.identity.authentication.modules.windowsdesktopsso.WindowsDesktopSSO</Value>
<Value>com.sun.identity.authentication.modules.msisdn.MSISDN</Value>
<Value>com.sun.identity.authentication.modules.datastore.DataStore</Value>
<Value>org.forgerock.openam.authentication.modules.persistentcookie.PersistentCookie</Value>
<Value>org.forgerock.openam.authentication.modules.scripted.Scripted</Value>
<Value>org.forgerock.openam.authentication.modules.deviceprint.DeviceIdMatch</Value>
<Value>org.forgerock.openam.authentication.modules.deviceprint.DeviceIdSave</Value>
<Value>com.sun.identity.authentication.modules.radius.RADIUS</Value>
<Value>com.sun.identity.authentication.modules.hotp.HOTP</Value>
<Value>org.forgerock.openam.authentication.modules.adaptive.Adaptive</Value>
<Value>org.forgerock.openam.authentication.modules.oauth2.OAuth</Value>
<Value>org.forgerock.openam.authentication.modules.oath.OATH</Value>
<Value>org.forgerock.openam.authentication.modules.fr.oath.AuthenticatorOATH</Value>
<Value>org.forgerock.openam.authentication.modules.oidc.OpenIdConnect</Value>
<Value>org.forgerock.openam.authentication.modules.saml2.SAML2</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-ldap-connection-pool-size"
type="list"
syntax="string"
i18nKey="a140"
resourceName="ldapConnectionPoolSize">
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-ldap-connection-pool-default-size"
type="single"
syntax="string"
i18nKey="a141"
resourceName="ldapConnectionPoolDefaultSize">
<DefaultValues>
<Value>1:10</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-sleep-interval"
type="single"
syntax="number"
i18nKey="">
<DefaultValues>
<Value>300</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="sunRemoteAuthSecurityEnabled"
type="single"
syntax="boolean"
i18nKey="a146"
resourceName="remoteAuthSecurityEnabled">
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="sunAMAuthKeepPostProcessInstances"
type="single"
syntax="boolean"
i18nKey="a148"
resourceName="keepPostProcessInstances">
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="sunAMAuthKeepAuthModuleIntances"
type="single"
syntax="boolean"
i18nKey="a149"
resourceName="keepAuthModuleInstances">
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="openam-xui-interface-enabled"
type="single"
syntax="boolean"
i18nKey="a154"
resourceName="xuiInterfaceEnabled">
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
</Global>
<Organization>
<AttributeSchema name="iplanet-am-auth-allowed-modules"
type="list"
syntax="string"
i18nKey="">
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-dynamic-profile-creation"
type="single_choice"
syntax="string"
i18nKey="a102"
resourceName="dynamicProfileCreation">
<ChoiceValues>
<ChoiceValue i18nKey="Create">true</ChoiceValue>
<ChoiceValue i18nKey="CreateWithAlias">createAlias</ChoiceValue>
<ChoiceValue i18nKey="Ignore">ignore</ChoiceValue>
<ChoiceValue i18nKey="Required">false</ChoiceValue>
</ChoiceValues>
<DefaultValues>
<Value>@USER_PROFILE_CHOICE@</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-admin-auth-module"
type="single_choice"
syntax="string"
i18nKey="a104"
resourceName="adminAuthModule">
<ChoiceValues>
<ChoiceValuesClassName
className=
"com.sun.identity.authentication.service.ConfiguredAuthServices"/>
</ChoiceValues>
<DefaultValues>
<Value>[Empty]</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-key-alias"
type="single"
syntax="string"
i18nKey="a151"
resourceName="keyAlias">
<DefaultValues>
<Value>test</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-default-role"
type="list"
syntax="string"
i18nKey="a105"
resourceName="defaultRole">
</AttributeSchema>
<AttributeSchema name="sunEnableModuleBasedAuth"
type="single"
syntax="boolean"
i18nKey="a145"
resourceName="moduleBasedAuthEnabled">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="openam-auth-stateless-sessions"
type="single"
syntax="boolean"
i18nKey="a158"
resourceName="statelessSessionsEnabled">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="openam.auth.zero.page.login.enabled"
type="single"
syntax="boolean"
i18nKey="a152"
resourceName="zeroPageLoginEnabled">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="openam.auth.zero.page.login.referer.whitelist"
type="list"
syntax="string"
i18nKey="a155"
resourceName="zeroPageLoginReferrerWhiteList">
</AttributeSchema>
<AttributeSchema name="openam.auth.zero.page.login.allow.null.referer"
type="single"
syntax="boolean"
i18nKey="a156"
resourceName="zeroPageLoginAllowedWithoutReferrer">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-login-failure-lockout-mode"
type="single"
syntax="boolean"
i18nKey="a125"
resourceName="loginFailureLockoutMode">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="sunStoreInvalidAttemptsInDS"
type="single"
syntax="boolean"
i18nKey="a144"
resourceName="storeInvalidAttemptsInDataStore">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-lockout-duration"
type="single"
syntax="number"
i18nKey="a130"
resourceName="lockoutDuration">
<DefaultValues>
<Value>0</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="sunLockoutDurationMultiplier"
type="single"
syntax="number"
i18nKey="a1301"
resourceName="lockoutDurationMultiplier">
<DefaultValues>
<Value>1</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-login-failure-count"
type="single"
syntax="number"
i18nKey="a126"
resourceName="loginFailureCount">
<DefaultValues>
<Value>5</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-login-failure-duration"
type="single"
syntax="number"
i18nKey="a127"
resourceName="loginFailureDuration">
<DefaultValues>
<Value>300</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-lockout-email-address"
type="single"
syntax="string"
i18nKey="a128"
resourceName="lockoutEmailAddress">
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-lockout-warn-user"
type="single"
syntax="number"
i18nKey="a129"
resourceName="lockoutWarnUserCount">
<DefaultValues>
<Value>4</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-lockout-attribute-name"
type="single"
syntax="string"
i18nKey="a131"
resourceName="lockoutAttributeName">
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-lockout-attribute-value"
type="single"
syntax="string"
i18nKey="a132"
resourceName="lockoutAttributeValue">
</AttributeSchema>
<AttributeSchema name="sunAMAuthInvalidAttemptsDataAttrName"
type="single"
syntax="string"
i18nKey="a1321"
resourceName="invalidAttemptsDataAttributeName">
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-user-container"
type="list"
syntax="dn"
i18nKey="">
<DefaultValues>
<Value>ou=People</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-alias-attr-name"
type="list"
syntax="string"
i18nKey="a114"
resourceName="aliasAttributeName">
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-user-naming-attr"
type="single"
syntax="string"
i18nKey="">
<DefaultValues>
<Value>@USER_NAMING_ATTR@</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-default-auth-level"
type="single"
syntax="number_range" rangeStart="0" rangeEnd="2147483647"
i18nKey="a500"
resourceName="defaultAuthLevel">
<DefaultValues>
<Value>0</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-locale"
type="single"
syntax="string"
i18nKey="a120"
resourceName="locale">
<DefaultValues>
<Value>@PLATFORM_LOCALE@</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-org-config"
type="single_choice"
syntax="string"
i18nKey="a121"
resourceName="orgConfig">
<ChoiceValues>
<ChoiceValuesClassName
className=
"com.sun.identity.authentication.service.ConfiguredAuthServices"/>
</ChoiceValues>
<DefaultValues>
<Value>[Empty]</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-login-success-url"
type="list"
syntax="string"
i18nKey="a133"
resourceName="loginSuccessUrl">
<DefaultValues>
<Value>/@SERVER_URI@/console</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-login-failure-url"
type="list"
syntax="string"
i18nKey="a134"
resourceName="loginFailureUrl">
<DefaultValues>
<Value/>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-post-login-process-class"
type="list"
syntax="string"
i18nKey="a135"
resourceName="loginPostProcessClass">
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-username-generator-enabled"
type="single"
syntax="boolean"
i18nKey="a138"
resourceName="usernameGeneratorEnabled">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>true</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-username-generator-class"
type="single"
syntax="string"
i18nKey="a139"
resourceName="usernameGeneratorClass">
<DefaultValues>
<Value>com.sun.identity.authentication.spi.DefaultUserIDGenerator</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="sunAMIdentityType"
type="multiple_choice"
syntax="string"
i18nKey="a142"
resourceName="identityType">
<ChoiceValues>
<ChoiceValuesClassName
className="com.sun.identity.authentication.service.ConfiguredIdentityTypes"/>
</ChoiceValues>
<DefaultValues>
<Value>user</Value>
<Value>agent</Value>
</DefaultValues>
</AttributeSchema>
<AttributeSchema name="sunAMUserStatusCallbackPlugins"
type="list"
syntax="string"
i18nKey="a143"
resourceName="userStatusCallbackPlugins">
</AttributeSchema>
<AttributeSchema name="sunAMUserAttributesSessionMapping"
type="list"
syntax="string"
i18nKey="a147"
resourceName="userAttributeSessionMapping">
</AttributeSchema>
<AttributeSchema name="iplanet-am-auth-valid-goto-domains"
type="list"
syntax="string"
i18nKey="">
</AttributeSchema>
<AttributeSchema name="forgerockTwoFactorAuthMandatory"
type="single"
syntax="boolean"
validator="RequiredValueValidator"
resourceName="twoFactorRequired"
i18nKey="a159">
<BooleanValues>
<BooleanTrueValue i18nKey="i18nTrue">true</BooleanTrueValue>
<BooleanFalseValue i18nKey="i18nFalse">false</BooleanFalseValue>
</BooleanValues>
<DefaultValues>
<Value>false</Value>
</DefaultValues>
</AttributeSchema>
</Organization>
</Schema>
<Configuration>
<OrganizationConfiguration name="/">
<AttributeValuePair>
<Attribute name="iplanet-am-auth-alias-attr-name"/>
<Value>@USER_NAMING_ATTR@</Value>
</AttributeValuePair>
<AttributeValuePair>
<Attribute name="iplanet-am-auth-admin-auth-module"/>
<Value>@AUTH_DEFAULT_CONFIG@</Value>
</AttributeValuePair>
<AttributeValuePair>
<Attribute name="iplanet-am-auth-org-config"/>
<Value>@AUTH_DEFAULT_CONFIG@</Value>
</AttributeValuePair>
</OrganizationConfiguration>
</Configuration>
</Service>
</ServicesConfiguration>