Common configuration options

This page contains the following sections:

HTTP connection security settings
Layout settings
Monitoring settings
Dashboard settings
Mailing options
Authentication settings
- Authentication settings (integrated)
- Authentication settings (security.manager)
Integration settings

There are several configuration properties which allow for more control about service.monitor. Values can be overriden by using the common application.properties mechanism (located in the installation’s data directory).

The table below contains a subset of all available properties, properties according database connection and security settings (binding to security.manager) are not described yet.

context.url: The URL to service.monitor as seen by users. This setting is only used for link creation in broadcasting functionalities (i.e. mails)

HTTP connection security settings

security.ssl.trustAny: Flag which enables that self signed certificates are accepted in HTTPS connections.
By default this flag is set to false, set it to true to enable it.

Default: false
security.ssl.trustAny.internal: Same as security.ssl.trustAny but used for internal communication (e.g. between security.manager and service.monitor).

Default: false

Layout settings

css.theme: Name of the layout theme to be used when displaying the service.monitor.

Default: sdi|everlasting
css.theme.showUserInfo.header: Flag to enable or disable user information in page header.
If service.monitor is embedded in map.apps Manager this should default to true.

Default: true

Monitoring settings

monitoring.internal.enabled: Flag to decide if this node shall execute monitoring tasks or not (or if it should only provide dashboard controls).

Default: true
monitoring.internal.cleanup.history.period: Interval in milliseconds to query database for outdated monitoring entries.

Default: 1800000
monitoring.logging.cleanup.enabled: Flag to determine if there shall be a database maintenance job at all.

Default: true
monitoring.logging.interval: Number in days to preserve historical monitoring data (content of table SM_REQUEST_HISTORY)

Default: 100
monitor.quartz.thread.count: Number of thread to be used on this node for executing monitoring jobs. The more parallel jobs to be executed the more this number needs to be increased.

Default: 25

Dashboard settings

monitoring.dashboard.health.widget: Flag to decide if the health widget shall be displayed in dashboard UI.

Default: true

Mailing options

mail.subject.de: customizable prefix for notification mail subjects (German language)

Default: [service.monitor]
mail.subject.en: customizable prefix for notification mail subjects (English language)

Default: [service.monitor]
mail.host: Mail server host name
mail.port: Mail server port
mail.user: (Technical) user for authentication at mail server
mail.password: Password for authentication at mail server
mail.sender: Specification of mail address to be used as sender for mail notifications.
mail.sender.adminRecipients: Additional mail recipients for all outgoing mails.

Authentication settings

security.mode: Definition of authentication mode.
INTEGRATED uses internal authentication, ONLY_AUTHN defines the use of security.manager

Default: INTEGRATED

Authentication settings (integrated)

security.user.admin.name: Username of internally provided user.

Default: monitor
security.user.admin.pw: User’s password, either clear text or hashed
security.user.pwenc: Provided hashing algorithms: plain|SHA-1|SHA-256|SHA-512

Default: SHA-1
security.user.use_mapped_pass: Has to be true if some other as plain is set.

Default: true
security.user.admin.roles: Role to be assigned to the internal user

Default: mon_Administrator

Authentication settings (security.manager)

security.sso.cookie.name: The name of the domain cookie.
This value has to correspond to the settings in security.manager.

Default: ct_SSO
security.sso.cookie.domain: The domain of the domain cookie.
This value has to correspond to the settings in security.manager.
security.sso.service.url: URL to SSO session service of security.manager

Default: http://localhost:8080/adminstration/resources/ssosessions
security.was.service.url: URL to WAS service of security.manager

Default: http://localhost:8080/adminstration/WAS
security.app.url: The URL to the login page of security.manager.
The client is redirected to this URL if she is currently not authenticated.

Default: https://<HOST>/administration
security.remoteuser.postfix: An additional postfix to be added when IWA is used and sec.man runs in hybrid mode.
security.keystore.location: The key store where the private key of the application is defined.

Default: <PATH>/.keystore
security.keystore.passwd: Key store password

Default: changeit
security.keystore.key.alias: Alias name of the private key

Default: ct-security
security.keystore.key.passwd: Password for the private key

Default: changeit

Integration settings

security.embedding.allowed.origins: Defines a comma-separated list of origins (e.g. 'http://my-example.com:8080') that are allowed to embed service.monitor in an iframe.