|
|
|
This section lists the configuration parameters for the SiteMinder Agent for SharePoint.
Identifies the group to which SiteMinder users who authenticate using forms-based authentication through the Agent for SharePoint belong.
Default: (value) SMAuthenticatedGroup
Default: (state) Disabled
Specifies a list of Microsoft Office user-agents for which the SiteMinder Agent for SharePoint allows access. This list is populated automatically when the Agent for SharePoint starts. Changes to the list made with the Administrative UI (for r12.0 SP2) or Management UI (for r6.x SP6), override the default settings.
For example, setting the value to Microsoft Office allows access to all versions of Microsoft Office products associated with the respective user agent string. Conversely, setting the value to Microsoft Office/12.0 allows access to only those versions of Microsoft Office products associated with the respective user agent string.
Default: Microsoft Office, MS Front Page, Microsoft Data Access Internet Publishing Provider Protocol Discovery, Test for Web Form Existence
Limits: Multiple values allowed.
Specifies the number of minutes that the user and group information obtained from the SiteMinder Policy Server remains in the cache. When this interval expires, the Agent for SharePoint contacts the SiteMinder Policy Server to obtain the user and group information.
Limit: 1
Default: 30
Specifies a list of protected SharePoint resources where Office Client Integration is enabled. In most situations, the settings for this parameter are determined automatically from the setting in the SharePoint Central Administration UI.Each URL in this parameter requires a port number (even for a default port such as 80 or 443).
If you are protecting your SharePoint resources using the SiteMinder Secure Proxy Server or an Apache Reverse Proxy server, add the request URLs to this parameter manually. For deployments of the Agent for SharePoint on a Reverse Proxy server, the port numbers are not required.
Example: host_name:port_number
Limits: Port numbers required for typical Agents. Omit port numbers for reverse proxy deployments.
Specifies a list of protected SharePoint URLs where Office Client Integration will be blocked, regardless of the setting in the SharePoint Central Administration UI. Add the port number if you are not using a default port (such as 80 or 443).
Use this setting to override the settings of the SharePoint Central Administration UI to prevent SharePoint administrators from circumventing SiteMinder settings regarding Office Client integration.
Example: host_name:port_number
Reserved for future use. Do not enable or change this parameter.
Default: No
Reserved for future use. Do not enable or change this parameter.
Default: $groupname{$directoryname}
Enables user level disambiguation, which avoids duplicate users, when searching multiple SharePoint directories. The value of the SPDisambiguateUserRule parameter specifies the name of the directory as defined in the SiteMinder Policy Server.
Default: Yes (enabled)
Specifies the format of the user name and the name of the directory connection defined in the SiteMinder Policy Server that is associated with your SharePoint users. The user name format should follow the convention in your organization. For example, if your user names are a first initial and last name without a space, then use the following:
$user_first_initalUser_Last_Name{$directory_name}
These settings are used to resolve any users found in multiple directories to the directory you specify. Use any special character such as braces {} except comma (,) semicolon (;) and colon (:) to separate the directory name from the user name.
Default: $user_name_format{$directory_name}
Example: $user_first_initalUser_Last_Name{$SharePoint_Directory_Connection_in_SiteMinder}
Note: If you change the value of this parameter, restart your IIS web server, and then migrate your users again (to retain their profile settings).
Lists the URLs of the SharePoint web applications for which Windows impersonation is used.
Example: server_name.domain_name:port_number
Default: None (Windows Impersonation not used).
Specifies the name of a Response variable created in SiteMinder which is mapped to a UserPrincipalName attribute of the user in an Active directory server and assigned as a response to the SiteMinder policy.
Default: None
Specifies the number user and group items contained in the Agent for SharePoint cache. If this value is too low, the Agent for SharePoint contacts the SiteMinder Policy Server to obtain user and group information instead of placing the items in the cache. If this value is too high, the cache could consume more resources than necessary on the SharePoint system. Changing the value of this parameter to zero disables the cache.
Limit:1
Default: 1000
Specifies the ASP.NET request timeout value in seconds. Use this parameter to avoid request time-outs in situations where the SiteMinder Management UI takes a long time to change the configuration of a web application.
Default: Disabled (timeout interval equals twice the value of the ASP.NET timeout)
Specifies the name of the Virtual attribute defined in the user directory connection of the SiteMinder Policy Server. Set this attribute before importing or modifying user profiles.
Default: UniversalID
Example: (Active Directory) sAMAccountName
Specifies the directory for the log and trace files created during the following operations:
Default: web_agent_home\log
Contains a group of virtual user attributes which are mapped to existing user attributes in the user directory connection defined in the SiteMinder Policy Server. The following attributes are available:
Default: email=Email group=GroupID username=UniversalID displayname=DisplayName
| Copyright © 2010 CA. All rights reserved. |
|