Remember me properties
After enabling the Remember me cookie, you may need to adjust the settings to fit your business needs. You can use the admin console to create new properties, if necessary, or update existing properties.
The following list shows all the properties that apply to the appropriate portal configuration service, namely WP RememberMeConfigService.
You can access these properties from the Welcome page of the administrative console by clicking Resources > Resource Environment Providers > WP RememberMeConfigService > Custom properties.
All property changes require that you restarted the WebSphere_Portal server in order for the changes to take effect.
- rememberMeCookie.enable
- Use this property to enable and disable the Remember me functionality.
IBM recommends that the configuration tasks provided are used because they automatically set certain default values.
Default: false
Type: java.lang.Boolean
- j2eeAuthenticate
- Specify whether a user who presents a valid Remember me cookie when accessing the protected portal area should be logged in. If this option is enabled, the user will not be asked to provide any other proof of identity (for example, user name and password) to enter into the protected portal area, unless the requested resource has a higher authentication level requirement.
In order to prevent an insecure portal setup, this option is disregarded if step-up authentication is disabled. As a result, a login to a protected portal area using a Remember me cookie is only allowed with an active step-up authentication engine, which enforces a higher authentication level if necessary.
Default: false
Type: java.lang.Boolean
- name
- Specify the name of the Remember me cookie.
Default: com.ibm.portal.RememberMe
Type: java.lang.String
- path
- Specify the path for which a client browser should return the cookie. Using this property you can limit the visibility of the Remember me cookie to certain hosts within your domain.
Default: /
Type: java.lang.String
- expiration
- Specify the expiration time of the Remember me cookie.
The assigned value is interpreted in seconds.
Default is 0. Setting the value to -1 means that the Remember me cookie persists until the Web browser session ends.
Default: 86400 (one day)
Type: java.lang.Integer
- secure
- Specify whether the Remember me cookie should only be returned from a client browser to the portal server using a secure protocol (e.g. HTTPS).
Default: true
Type: java.lang.Boolean
- handler
- Specify the fully qualified name of the class that implements the com.ibm.portal.auth.rememberme.spi.RememberMeCookieHandler SPI.
Default: com.ibm.wps.auth.rememberme.impl.RememberMeCookieHandlerImpl
Type: java.lang.String
- handler.properties.property_name
- Use properties following the above scheme to specify properties that will be passed on to the initialization method of the Remember me cookie handler implementation. The properties received by the handler then have the name property_name and the prefix handler.properties is omitted.
Default: -
Type: java.lang.String
- handler.properties.encryptionAlg
- Specify the encryption algorithm that should be used to encrypt and decrypt the Remember me cookie.
This property is specific to the default Remember me cookie handler.
Default: AES
Type: java.lang.String
- handler.properties.keyLength
- Specify the length of the key that should be used to encrypt and decrypt the Remember me cookie. The assigned value is interpreted in bytes.
This property is specific to the default Remember me cookie handler.
Default: 128
Type: java.lang.Integer
- handler.properties.saltLength
- Specify the length of the random salt that is part of the encrypted Remember me cookie content. The assigned value is interpreted in bytes.
This property is specific to the default Remember me cookie handler.
Default: 20
Type: java.lang.Integer
- handler.properties.internalExpiration
- Specify the lifetime of the Remember me cookie that is part of the encrypted Remember me cookie content. Unlike the property expiration, this property is used by the default Remember me cookie handler to check the validity of a Remember me cookie that is received by portal. Thus, it is transparent to the client. The assigned value is interpreted in seconds.
This property is specific to the default Remember me cookie handler.
Default: 86400 (one day)
Type: java.lang.Integer
- handler.properties.serverSecretAlias
- Specify the J2C authentication data alias that holds the passphrase that is used to encrypt and decrypt the Remember me cookie.
This property is specific to the default Remember me cookie handler.
Default:
SUAServerSecret
Type: java.lang.String
Parent topic:
Secure environment on AIX
Related tasks
Enable step-up authentication and/or the Remember me cookie
Configure Remember me for J2EE authentication