Attributes on the Security Properties panel of Array Manager are
security settings for the array. The attributes apply to all array
members.
Array Manager | Command line | Description |
---|
Password Cache: Generate new encryption key on restart | --security-newkeyonrestart 1 | 0 |
- Whether to generate a new encryption key for the password cache
when the Secure Global Desktop server restarts.
- If a new encryption key is generated, the existing password cache is preserved and encrypted with the new key.
|
Print Name Mappings: Expire after | --security-printmappings-timeout seconds |
- How long an entry in the print name mapping table is
retained. This table is used to ensure that users can print from an
application and then exit the application, without losing the print
job.
- The timer starts counting when the user closes the last
application on that application server.
- We recommend you set this to be greater than the maximum delay
between choosing to print from an application and the printer
responding.
- If you change this value, all existing expiry timeouts are
reset. Changes take effect immediately.
- To flush the table, set to 0, Apply, and then set to a larger
value.
- To display the table, use
tarantella print status --namemapping .
|
Connection Types: Apply when users log in | --security-applyconnections 1 | 0 |
- Whether to take note of the Connections attributes
when a user logs in to Secure Global Desktop.
- Check the box (set to 1) if you're using the Connections
attribute for person, organizational unit or organization objects.
- Clear the box if the Sun Secure Global Desktop Security Pack is not installed.
- If the Sun Secure Global Desktop Security Pack is installed, connections are secure
unless the box is checked and some connections are
defined otherwise.
- Clearing the box lets users log in more quickly.
- Changes to this attribute take effect immediately.
|
X Displays: Use X authorization (xauth) | --security-xsecurity 1 | 0 |
- Whether to secure all Secure Global Desktop X displays using X authorization.
This prevents users from accessing X displays they're not authorized to access.
- We recommend that you use X authorization. It is enabled by default.
- To use X authorization, xauth must be installed on the application server.
- If X authorization is enabled, Secure Global Desktop checks the standard
locations for the xauth binary. Extra configuration may be needed if the
binary is in a non-standard location.
- Changes to this attribute take effect immediately.
Note This setting only secures the X display between the Secure Global Desktop
server and the application server.
|
Copyright © 1997-2005 Sun Microsystems, Inc. All rights reserved.