.png?width=180&height=32&name=NW%20Logo%20(2).png){kind=small}
Security-server Configuration
Security-server ConfigurationSecurity-server Configuration
MigrationPropertiesMigrationProperties
- Name:
rsa.migration.enable
- Default value:
true
- Type:
boolean
- Description:
Flag to be used in case of unit and integration tests for disabling migration check on first boot.
- Name:
rsa.migration.ui-data-path
- Default value:
/backup/var/lib/netwitness/uax
- Type:
string
- Description:
The location of 10.x SA UI data
PasswordPolicyPropertiesPasswordPolicyProperties
- Name:
rsa.security.account.password-policy.cannot-include-id
- Default value:
false
- Type:
boolean
- Description:
Can the password include the account identifier in it?
- Name:
rsa.security.account.password-policy.min-chars
- Default value:
8
- Type:
integer
- Description:
The minimum number of characters the password must have.
- Name:
rsa.security.account.password-policy.min-lower-chars
- Default value:
0
- Type:
integer
- Description:
The minimum number of lower-case characters the password must have.
- Name:
rsa.security.account.password-policy.min-non-latin-chars
- Default value:
0
- Type:
integer
- Description:
The minimum number of non-latin characters a password must have
- Name:
rsa.security.account.password-policy.min-numeric-chars
- Default value:
0
- Type:
integer
- Description:
The minimum number of numeric characters the password must have.
- Name:
rsa.security.account.password-policy.min-special-chars
- Default value:
0
- Type:
integer
- Description:
The minimum number of special characters the password must have.
- Name:
rsa.security.account.password-policy.min-upper-chars
- Default value:
0
- Type:
integer
- Description:
The minimum number of upper-case characters the password must have.
- Name:
rsa.security.account.password-policy.passwords-expire-after
- Default value:
30
- Type:
seconds
- Description:
The maximum time an account password is valid before it must be changed.
- Name:
rsa.security.account.password-policy.special-chars
- Default value:
~!@#$%^&*_-+=`$|(){}[]:;'"<>,.?/
- Type:
string
- Description:
The characters that are considered "special"
PkiAuthenticationPropertiesPkiAuthenticationProperties
- Name:
rsa.security.authentication.pki.enabled
- Default value:
false
- Type:
boolean
- Description:
This property controls if the PKI authentication feature is enabled
- Name:
rsa.security.authentication.pki.retry-interval
- Default value:
1
- Type:
seconds
- Description:
This property controls how long to wait before retrying an initialization task.
AuthenticationPolicyPropertiesAuthenticationPolicyProperties
- Name:
rsa.security.authentication.policy.account-lockout
- Default value:
20
- Type:
seconds
- Description:
Account lockout interval
- Name:
rsa.security.authentication.policy.auto-create-external-users
- Default value:
true
- Type:
boolean
- Description:
Automatically create user profiles for external accounts
- Name:
rsa.security.authentication.policy.case-sensitive
- Default value:
true
- Type:
boolean
- Description:
Case sensitivity of account identifiers
- Name:
rsa.security.authentication.policy.max-successive-failures-before-lockout
- Default value:
5
- Type:
integer
- Description:
Accounts are locked after successive failures
- Name:
rsa.security.authentication.policy.must-have-a-role
- Default value:
true
- Type:
boolean
- Description:
Require role mapping for external users
DeploymentPropertiesDeploymentProperties
- Name:
rsa.security.deployment.bootstrap-retry-interval
- Default value:
30
- Type:
seconds
- Description:
The amount of time to wait before retrying a failed bootstrap attempt.
SamlUserAccountPropertiesSamlUserAccountProperties
- Name:
rsa.security.saml.account.user-account-type
- Default value:
- Type:
accounttype
- Description:
Account type of the users authenticated by SAML