AIX - Remember me properties
The Remember me mechanism can be configured using the administrative console in WAS.
The following list shows all the properties that apply to the appropriate portal configuration service, namely...
WP RememberMeConfigServiceYou can access these properties from the Welcome page of the WAS administrative console by clicking...
Resources | Resource Environment Providers | WP RememberMeConfigService | Custom propertiesAny property changes require the portal server to be restarted in order for the changes to take effect.
- rememberMeCookie.enable
- Enable and disable the Remember me functionality.
IBM recommends that the configuration tasks provided are used because they automatically set certain default values.
Default: false
Type: java.lang.Boolean
- j2eeAuthenticate
- Whether a user who presents a valid Remember me cookie when accessing the protected portal area should be logged in. If this option is enabled, the user will not be asked to provide any other proof of identity
For example user name and password to enter into the protected portal area, unless the requested resource has a higher authentication level requirement.
To prevent an insecure portal setup, this option is disregarded if step-up authentication is disabled. As a result, a login to a protected portal area using a Remember me cookie is only allowed with an active step-up authentication engine, which enforces a higher authentication level if necessary.
Default: false
Type: java.lang.Boolean
- name
- Name of the Remember me cookie.
Default: com.ibm.portal.RememberMe
Type: java.lang.String
- path
- Path for which a client browser should return the cookie. Using this property you can limit the visibility of the Remember me cookie to certain hosts within your domain.
Default: /
Type: java.lang.String
- expiration
- Expiration time of the Remember me cookie. The assigned value is interpreted in seconds.
The default value is 0. Setting the value to -1 means that the Remember me cookie persists until the Web browser session ends.
Default: 86400 (one day)
Type: java.lang.Integer
- secure
- Whether the Remember me cookie should only be returned from a client browser to the portal server using a secure protocol (e.g. HTTPS).
Default: true
Type: java.lang.Boolean
- handler
- Fully qualified name of the class that implements the SPI
com.ibm.portal.auth.rememberme.spi.RememberMeCookieHandlerType: java.lang.String
- handler.properties. <property_name>
- Use properties following the above scheme to specify properties that will be passed on to the initialization method of the Remember me cookie handler implementation. The properties received by the handler then have the name <property_name>, the prefix handler.properties. is omitted.
Default: -
Type: java.lang.String
- handler.properties.encryptionAlg
- Encryption algorithm that should be used to encrypt and decrypt the Remember me cookie.
This property is specific to the default Remember me cookie handler.
Default: AES
Type: java.lang.String
- handler.properties.keyLength
- Length of the key that should be used to encrypt and decrypt the Remember me cookie. The assigned value is interpreted in bytes.
This property is specific to the default Remember me cookie handler.
Default: 128
Type: java.lang.Integer
- handler.properties.saltLength
- Length of the random salt that is part of the encrypted Remember me cookie content. The assigned value is interpreted in bytes.
This property is specific to the default Remember me cookie handler.
Default: 20
Type: java.lang.Integer
- handler.properties.internalExpiration
- Lifetime of the Remember me cookie that is part of the encrypted Remember me cookie content. Unlike the property expiration, this property is used by the default Remember me cookie handler to check the validity of a Remember me cookie that is received by portal. Thus, it is transparent to the client. The assigned value is interpreted in seconds.
Note that this property is specific to the default Remember me cookie handler.
Default: 86400 (one day)
Type: java.lang.Integer
- handler.properties.serverSecretAlias
- J2C authentication data alias that holds the passphrase that is used to encrypt and decrypt the Remember me cookie. This property is specific to the default Remember me cookie handler.
Default: SUAServerSecret
Type: java.lang.String
Parent topic
Securing your environment on AIX
Related tasks
Enabling step-up authentication and/or the Remember me cookie
Disable step-up authentication and/or the Remember me cookie