+

Search Tips   |   Advanced Search


Remember me properties

After enabling the Remember me cookie, you may need to adjust the settings to fit your business needs. You can use the admin console to create new properties, if necessary, or update existing properties.

The following list shows all the properties that apply to the appropriate portal configuration service, namely WP RememberMeConfigService.

You can access these properties from the Welcome page of the administrative console by clicking Resources > Resource Environment Providers > WP RememberMeConfigService > Custom properties.

All property changes require that you restarted the WebSphere_Portal server in order for the changes to take effect.

rememberMeCookie.enable

Use this property to enable and disable the Remember me functionality.

IBM recommends that the configuration tasks provided are used because they automatically set certain default values.

Default: false

Type: java.lang.Boolean

j2eeAuthenticate

Specify whether a user who presents a valid Remember me cookie when accessing the protected portal area should be logged in. If this option is enabled, the user will not be asked to provide any other proof of identity (for example, user name and password) to enter into the protected portal area, unless the requested resource has a higher authentication level requirement.

In order to prevent an insecure portal setup, this option is disregarded if step-up authentication is disabled. As a result, a login to a protected portal area using a Remember me cookie is only allowed with an active step-up authentication engine, which enforces a higher authentication level if necessary.

Default: false

Type: java.lang.Boolean

name

Specify the name of the Remember me cookie.

Default: com.ibm.portal.RememberMe

Type: java.lang.String

path

Specify the path for which a client browser should return the cookie. Using this property you can limit the visibility of the Remember me cookie to certain hosts within your domain.

Default: /

Type: java.lang.String

expiration

Specify the expiration time of the Remember me cookie.

The assigned value is interpreted in seconds.

Default is 0. Setting the value to -1 means that the Remember me cookie persists until the Web browser session ends.

Default: 86400 (one day)

Type: java.lang.Integer

secure

Specify whether the Remember me cookie should only be returned from a client browser to the portal server using a secure protocol (e.g. HTTPS).

Default: true

Type: java.lang.Boolean

handler

Specify the fully qualified name of the class that implements the com.ibm.portal.auth.rememberme.spi.RememberMeCookieHandler SPI.

Default: com.ibm.wps.auth.rememberme.impl.RememberMeCookieHandlerImpl

Type: java.lang.String

handler.properties.property_name

Use properties following the above scheme to specify properties that will be passed on to the initialization method of the Remember me cookie handler implementation. The properties received by the handler then have the name property_name and the prefix handler.properties is omitted.

Default: -

Type: java.lang.String

handler.properties.encryptionAlg

Specify the encryption algorithm that should be used to encrypt and decrypt the Remember me cookie.

This property is specific to the default Remember me cookie handler.

Default: AES

Type: java.lang.String

handler.properties.keyLength

Specify the length of the key that should be used to encrypt and decrypt the Remember me cookie. The assigned value is interpreted in bytes.

This property is specific to the default Remember me cookie handler.

Default: 128

Type: java.lang.Integer

handler.properties.saltLength

Specify the length of the random salt that is part of the encrypted Remember me cookie content. The assigned value is interpreted in bytes.

This property is specific to the default Remember me cookie handler.

Default: 20

Type: java.lang.Integer

handler.properties.internalExpiration

Specify the lifetime of the Remember me cookie that is part of the encrypted Remember me cookie content. Unlike the property expiration, this property is used by the default Remember me cookie handler to check the validity of a Remember me cookie that is received by portal. Thus, it is transparent to the client. The assigned value is interpreted in seconds.

This property is specific to the default Remember me cookie handler.

Default: 86400 (one day)

Type: java.lang.Integer

handler.properties.serverSecretAlias

Specify the J2C authentication data alias that holds the passphrase that is used to encrypt and decrypt the Remember me cookie.

This property is specific to the default Remember me cookie handler.

Default:

SUAServerSecret

Type: java.lang.String


Parent topic:

Secure environment on HP-UX


Related tasks


Enable step-up authentication and/or the Remember me cookie
Configure Remember me for J2EE authentication