Java Agents 2023.11

Invert Not-Enforced IPs

When true, enforce policy for the IPs specified by the Not-Enforced Client IP List property, instead of allowing access to them without authentication.

For security considerations, do not enable this property. Instead, ForgeRock recommends using the NOT keyword to invert specific rules in the Not-Enforced Client IP List.

Property name

org.forgerock.agents.notenforced.ip.invert.enabled

Aliases

org.forgerock.agents.notenforced.ip.invert.enabled
  Introduced in Java Agent 5.6

com.sun.identity.agents.config.notenforced.ip.invert
  Introduced in Java Agent 5.0
  Recognized from AM 6

Function

Not-enforced

Type

Boolean: true returns true; all other strings return false.

Default

false

Bootstrap property

No

Required property

No

Restart required

No

Local configuration file

AgentConfig.properties

AM console

Tab: Application

Title: Invert Not-Enforced IPs

Legacy title: Invert Not Enforced IPs