IBM© DataPower Operations Dashboard v1.0.5.0

A newer version of this product documentation is available.

You are viewing an older version. View latest at IBM DPOD Documentation.

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 5 Next »

DPOD's Web Console enables the user to view all the information gathered, processed and analyzed by DPOD.

This useful information can be highly confidential. DPOD therefore implements a suite of security functions in order to enable confidentiality and and Role Based Access Control to DPOD's functions and information.

Secure Web Access

  • Access to DPOD's Web Console is provided via a supported web browser over HTTPS (SSL).

  • The Console uses a Self signed certificate and key (in PEM format) generated during the DPOD installation process.The user should replace them with the organization’s certificate.

  •  Audit log (Access log ) - exists and enabled by default - You can configure its format, It can be done from /app/ui/MonTier-UI/conf/server.xml look for the string: access_log and look for explanation in the comments.

  • Session timeout - yes (30 min) - session timeout - It can be configured from the config files only . It can be done from /app/ui/MonTier-UI/conf/web.xml - look for the string: session-timeout and look for explanation in the the comments.

  • DOD Lockout - You can configure the number of retries and period of lockout from the config files only . It can be done from the file /app/ui/MonTier-UI/conf/server.xml change the LockOutRealm as required.For example <Realm className="org.apache.catalina.realm.LockOutRealm" failureCount="3" lockOutTime="300" cacheSize="1000" cacheRemovalWarningTime="3600">
  • No labels

IBM© DataPower Operations Dashboard (DPOD) v1.0.5.0