Previous Topic: arcotcommon.iniNext Topic: Changing Server Startup Logging Parameters

CA AuthMinder UNIX Installation GuideConfiguration Files and OptionsINI Filesarcotcommon.iniParameters Used by AuthMinder Server

Parameters Used by AuthMinder Server

The following table lists the database and encryption settings used by AuthMinder Server. Additional database configurations for the AuthMinder Server must be performed using the Instance Management screen of the Administration Console.

Parameter

Default

Description

Common Database Parameters in[arcot/db/dbconfig] Section

DbType

No default

The type of the database applicable to all database connections. The supported values are:

  • mssqlserver
  • oracle
  • db2
  • mysql

EnableBrandLicensing

0

Whether a branded ODBC driver is in use. This can be used when you are using the branded ODBC drivers from DataDirect.

BrandLicenseFile

No Default

The license file name when you use a branded ODBC driver.

StartWithAnyPool

1 (enabled)

Enables AuthMinder to start with the backup database when the primary database is unavailable.

Primary and Backup Database Connection Parameters in [arcot/db/primarydb] and [arcot/db/backupdb] Sections

Datasource.N

No Default

The name of the ODBC System Data Source Name (DSN) pointing to the primary database hosting the server data.

Username.N

No Default

The User Name used by the server to access the database.

Encryption Mode Setting Parameter in [arcot/crypto/device] Section

HSMDevice

s/w

The mode that sets whether the AuthMinder information must be encrypted with a key stored in the database or with one in a Hardware Security Module (HSM).

Supported values are:

  • s/w: Indicates that the data will be encrypted with the key label stored in the database.
  • chrysalis: Indicates the Chrysalis (Luna) HSM will be used to encrypt the data.
  • nfast: Indicates nFast (nCipher netHSM) will be used to encrypt the data.

Chrysalis (Luna) HSM Configuration Parameters in [crypto/pkcs11modules/chrysalis] Section

sharedLibrary

No Default

The absolute path to the PKCS#11 shared library corresponding to the HSM. The default value for Chrysalis (Luna) is:

/usr/lunasa/lib/libCryptoki2.so

 

storageSlot

0

The HSM slot where the 3DES keys used for encrypting the data are present.

accelSlot

0

The slot for internal use by Arcot.

sessionCount

20

The maximum number of sessions that can be established with the HSM device.

nFast (nCipher netHSM) HSM Configuration Parameters in [crypto/pkcs11modules/nfast] Section

sharedLibrary

No Default

The absolute path to the PKCS#11 shared library corresponding to the HSM. The default value for nFast (nCipher netHSM) is:

/opt/nfast/toolkits/pkcs11/libcknfast.so

 

storageSlot

1

The HSM slot where the 3DES keys used for encrypting the data are present.

accelSlot

0

The slot for internal use by Arcot.

sessionCount

200

The maximum number of sessions that can be established with the HSM device.

Watchdog Configurations in [arcot/watchdog] Section

ServerStartsTimeout

25

The time period from the Server startup. If watchdog brings up the Server for 5 times within the specified duration of ServerStartsTimeout (25 minutes), then the Server is not restarted again.

The time is in minutes.

ServerStartsCount

5

The maximum count for restarting the Server. After this, the Server is not be restarted again.

RestartSleepTime

5000

The sleep time after which watchdog restarts the Server. The sleep time is in milliseconds.