+

Search Tips   |   Advanced Search

 

i5/OS - Remember me properties

The Remember me mechanism can be configured using the administrative console in WAS.

The following list shows all the properties that apply to the appropriate portal configuration service, namely WP RememberMeConfigService.

You can access these properties from the Welcome page of the WAS administrative console by clicking Resources > Resource Environment Providers > WP RememberMeConfigService > Custom properties.

any property changes require the portal server to be restarted in order for the changes to take effect.

rememberMeCookie.enable

Enable and disable the Remember me functionality.

IBM recommends that the configuration tasks provided are used because they automatically set certain default values.

Default: false

Type: java.lang.Boolean

j2eeAuthenticate

Whether a user who presents a valid Remember me cookie when accessing the protected portal area should be logged in. If this option is enabled, the user will not be asked to provide any other proof of identity

For example...

user name and password to enter into the protected portal area, unless the requested resource has a higher authentication level requirement.

Please note that in order to prevent an insecure portal setup, this option is disregarded if step-up authentication is disabled. As a result, a login to a protected portal area using a Remember me cookie is only allowed with an active step-up authentication engine, which enforces a higher authentication level if necessary.

Default: false

Type: java.lang.Boolean

name

Name of the Remember me cookie.

Default: com.ibm.portal.RememberMe

Type: java.lang.String

path

Path for which a client browser should return the cookie. Using this property you can limit the visibility of the Remember me cookie to certain hosts within your domain.

Default: /

Type: java.lang.String

expiration

Expiration time of the Remember me cookie. The assigned value is interpreted in seconds.

The default value is 0. Setting the value to -1 means that the Remember me cookie persists until the Web browser session ends.

Default: 86400 (one day)

Type: java.lang.Integer

secure

Whether the Remember me cookie should only be returned from a client browser to the portal server using a secure protocol (e.g. HTTPS).

Default: true

Type: java.lang.Boolean

handler

Fully qualified name of the class that implements the SPI com.ibm.portal.auth.rememberme.spi.RememberMeCookieHandler.

Default: com.ibm.wps.auth.rememberme.impl.RememberMeCookieHandlerImpl

Type: java.lang.String

handler.properties. <property_name>

Use properties following the above scheme to specify properties that will be passed on to the initialization method of the Remember me cookie handler implementation. The properties received by the handler then have the name <property_name>, the prefix handler.properties. is omitted.

Default: -

Type: java.lang.String

handler.properties.encryptionAlg

Encryption algorithm that should be used to encrypt and decrypt the Remember me cookie.

This property is specific to the default Remember me cookie handler.

Default: AES

Type: java.lang.String

handler.properties.keyLength

Length of the key that should be used to encrypt and decrypt the Remember me cookie. The assigned value is interpreted in bytes.

This property is specific to the default Remember me cookie handler.

Default: 128

Type: java.lang.Integer

handler.properties.saltLength

Length of the random salt that is part of the encrypted Remember me cookie content. The assigned value is interpreted in bytes.

This property is specific to the default Remember me cookie handler.

Default: 20

Type: java.lang.Integer

handler.properties.internalExpiration

Lifetime of the Remember me cookie that is part of the encrypted Remember me cookie content. Unlike the property expiration, this property is used by the default Remember me cookie handler to check the validity of a Remember me cookie that is received by portal. Thus, it is transparent to the client. The assigned value is interpreted in seconds.

Note that this property is specific to the default Remember me cookie handler.

Default: 86400 (one day)

Type: java.lang.Integer

handler.properties.serverSecretAlias

J2C authentication data alias that holds the passphrase that is used to encrypt and decrypt the Remember me cookie.

This property is specific to the default Remember me cookie handler.

Default: SUAServerSecret

Type: java.lang.String

 

Parent topic

Securing your environment on i5/OS

 

Related tasks


Enabling step-up authentication and/or the Remember me cookie
Disable step-up authentication and/or the Remember me cookie