Akenti Configuration File

Security Hompage ->Akenti Homepage ->Documentation ->Details ->Akenti.conf


The Akenti configuration file defines a number of configuration parameters for the Akenti Policy engine and the Monitor, Cache and Resource servers. The format and sample values follow: 

#######################################################################
#
# POLICY ENGINE CONFIGRUATION
#
#  RootResource Name - Locates the top of the policy trees
#  		The first value is the resource name that appears 
#  		in the Use Condition certificates.
#		The second value is the pathname of the resource base. 
#  		The resource root directory is base_directory/resource_name.
#  		Each resource root  must contain a root Policy file.
# PolicyFileName [default .htauthority]
#		The name of the policy certiifcates
# ResourceMap [optional]
#		if this map exists it will be used to 
# 		map the user provided resource name to the ones that the Akenti
#	 	policy files know about
# SignCerts [on, off, default off] 
#		Signing capability and cached certs
#
RootResourceName TEST /akenti/testResourceTree
RootResourceName WEB /home/imglib3/http.akenti/htdocs

PolicyFileName .htauthority

ResourceMap /akenti/testResourceTree/conf/Resource.map

SignCerts  off

#############################################################
#
#  CACHE CONFIGURATION 

# Caching Keys: 
#
# cache  = [on, off]
# cacheType = [server, file]
#
# If we are using a server to cache the certs
#    cacheHost hostname
#    cachePort port
# If we are caching directly in the file system 
#    cacheDir   the pathname of the caching directory 
#   
Caching on 
CacheType file
CacheHost 
CachePort 
CacheDir /akenti/testResourceTree/cache
#                                                          
#     END CACHE CONFIG                    
#                                                          
#############################################################

#############################################################
#                                                          
#  AUTHORIZATION SERVER INFO                
#                                                          
#    SSLMode  [on, off]  Use SSL                          
#    AkentiPort       default secure port 8443             
#                     default unsecure port 8444           
#    ServerCertFile   server's certificate pathname        
#    ServerKeyFile    server's private key pathname        
#                                                          

SSLMode       off
AkentiPort     8444
ServerCertFile /akenti/testResourceTree/idCerts/akentiServerCert.pem
ServerKeyFile /akenti/testResourceTree/idCerts/akentiServerKey.pem 
                                                          
#     END AUTH SERVER INFO                  
#                                                          
#############################################################

#############################################################
#                                                          
#   RESOURCE DEFINITION SERVER INFO                
#                                                          
#   
#    ResDefPort		 port that the ResDef server listens on
#    ResAttrName	 specifies what attributes are known and
# 			 who can sign for them. Used by the resource 
#			 definition server to fill in menus for the 
#			 certificate generators.
#    ResDefSSL	  	 [on,off] Use ssl
#    ResDefServerCert    ResDefServer's X509 certificate
#    ResDefServerKey     ResDefServer's unencrypted pkcs8 private key
#                                                          
ResDefPort             8080
ResAttrName            resattrs.xml
ResDefSSL	       off
ResDefServerCert       /akenti/testResourceTree/idCerts/akentiServerCert.pem
ResDefServerKey        /akenti/testResourceTree/idCerts/akentiServerKey.pem 
#                                                          
#  END RESOURCE DEFINITION SERVER INFO                  
#                                                          
#############################################################

#############################################################
#                                                           
#   LOGGING CONFIGURATION                        
# Logging parameters:                                      
#                                                          
# Type of logging desired                                  
# Logging  [off, file, server, stdout, stderr]             
#                                                          
# Setting the logging level                                
#   LogLevel [1, 2, 3, 4, 5]                               
#   Only logs with a level <= LogLevel will be logged 
#    6 - none, 1 errors, 2 monitoring, 3,4 debugging       
#                                                          
# Logging to a file:                                       
#   TempLogDir  temporary storage                          
#   MonitorLogFile permanent storage                       
#                                                          
# Logging to a server                                      
#   MonitorServer   server's hostname                      
#   MonitorPort     server's port                          
#                                                          
Logging file
TempLogDir /tmp
LogLevel 2 
MonitorLogFile /akenti/testResourceTree/logs/Akenti.log
MonitorKeyWords /akenti/java-classes/MonitorKeyWords
# END LOGGING CONFIG
#                                                          
#############################################################

Page last modified: Monday, 29-Dec-2003 16:21:32 PST Contact: MRThompson@lbl.gov <Akenti development group> Credits:Distributed Security research and development is funded by the U.S. Dept. of Energy, Office of Science, Office of Advanced Scientific Computing Research, Mathematical, Information, and Computational Sciences Division. Privacy and site security notice to Users
Akenti Homepage
DSD Homepage
LBNL Homepage