[Security_Service]
The [Security_Service] stanza is used to configure the MVMM Application Service.
Parameter | Description |
backlog | The default value is 50. Defines the number of packets that is queued if the service cannot remove them faster than they are arriving. This is a TCP/IP setting. |
company_name | The information for this field is automatically extracted during the installation. For internal program use only. Do not edit. |
data_store | Default: Reviewer note: Need more information. |
db_mode | The default value is client. Defines the mode in which the [QP_Object_Manager_Service] is opened. If the value is not defined or does not equal "client," then the TrueSight MainView Middleware Monitor Object Manager runs less efficiently. For internal program use only. |
db_seconds_between_retries | Defines the number of seconds between connection attempts to the database if no connection is established. If this field is not defined in the services.cfg file, then db_seconds_between_retries defaults to 30 seconds. If a connection to the database exists, then no further attempt is made. |
demarshaller_stack_size | Defines the stack size. The default setting is usually acceptable. Before editing this setting, contact BMC Support. |
demarshaller_threads=5 | The default value is 5. Defines the maximum number of concurrent threads that the MVMM Application Service uses to listen on the TCP port. This number should be equal to or lower than the number of threads in threads=. This is a tuning parameter and generally should not be modified. |
execution_key | The execution_key field gets its information during the installation. For internal program use only. |
hostname | The default value is localhost. Defines the host name or IP address of the computer on which the MVMM Application Service runs. |
listen_port | The default value is 15004. Defines the port on which the MVMM Application Service listens. This is set during installation. |
message_block_pool_size | The default value is 4MB (4096 kB). Defines how much memory is pre-allocated for the MVMM Application Service to use for message processing. The message_block_pool_size is allocated in blocks of 4KB. |
password | The default value is encrypted. When starting the MVMM Application Service, it reads the user's file, which has a one-time password. The MVMM Application Service then selects a new password and writes the new password here. |
service_state_monitor_stack_size | Defines the size of the service state monitor. The default setting is usually acceptable. Before editing this setting, contact BMC Support. Reviewer note: What is the default setting? |
state_filename | Default: Reviewer note: Need more information. |
threads | The default value is 1. This is a tuning parameter and generally should not be modified. |
username | The default value is SecurityService. Defines the user account that the MVMM Application Service uses. When starting the MVMM Application Service, it reads the user's file and uses the user name for the MVMM Application Service. |
auth_access_token_expires_mins | The default value is 10. Defines the expiration time for access tokens. This value must be between 1 and 30 minutes, and be less than the refresh token period. |
auth_refressh_token_expires_days | The default value is 1. Defines the expiration time for refresh tokens. This value must be between 1 and 7 days, and must be less than the key rotation period. |
auth_code_expires_secs | The default value is 30. Defines the expiration time for authorization codes. This value must be between 10 and 240 seconds. |
auth_signing_algorithm | The default value is ES384. Defines the JSON Web Signature algorithm used to sign authorization tokens. Must be ES256, ES384, ES512, RS256, RS384. RS512, PS256, PS384 or PS512 |
auth_rsa_key_size | The default value is 2048. Defines the key size used for RSA based signatures. It not used if the signing algorithm is ES256, ES384, or ES512 |
auth_rotate_keys_days | The default value is 7. Defines the days after which the token signing keys are refreshed. Must be between 2 and 30. |
auth_allowed_redirect_to_server | The default value is Not set. Defines the server names allowed to redirect authorization requests. Value is derived at runtime if not configured. Value should be a comma separated list of valid host names for client redirection. |