Java Agents 2023.11.1

Properties reference

This reference describes agent configuration properties.

When you create an agent profile, you choose whether to store the agent configuration in AM’s configuration store or locally to the agent installation. The local configuration file syntax is the same as that of a standard Java properties file.

Property aliases

A property alias specifies a path for a property. A property can have multiple aliases but each alias is unique to that property.

How the agent manages multiple aliases

When you assign multiple values to the same property through different aliases, the agent assigns the values as follows:

  • For list properties, it appends each assignment to the list.

  • For simple string properties, it overwrites the current value with each new value. The final value is the last value to be assigned.

The following example assigns different values to a string property with three aliases:

com.sun.identity.agents.app.username=one
com.sun.identity.agents.config.profilename=two
org.forgerock.agents.profile.name=three

The final value of the property is three, the last value to be assigned.

How AM manages multiple aliases

Each version of AM recognizes a different group of agent aliases. When you are using AM commands, such as ssoadm to configure an agent, consider the following points on using recognized and unrecognized aliases:

  • When you use a recognized alias in an ssoadm command (for example, com.sun.identity.agents.config.notenforced.ip.cache.size=2000), the agent updates the value for the property represented by that alias.

    For the above example, Max Entries in Not-Enforced IP Cache is displayed as 2000 in the Application tab of the AM console.

  • When you use an unrecognized alias in an ssoadm command (for example, org.forgerock.agents.notenforced.ip.cache.size=4000), the agent creates a custom property.

    For the above example, org.forgerock.agents.notenforced.ip.cache.size=4000 is displayed in Custom Properties, in the Advanced tab of the AM console.

  • When a property is set by both a standard property and a custom property, the custom property takes precedence. The value of the standard property is not updated, and both values are displayed in the configuration.

List properties

List properties can be configured with or without an index location. The following formats are allowed and equivalent:

property[0]=one
property[1]=two
property[2]=three
property=one
property=two
property=three

When the agent assigns values to a list property, it adds them to the list in the order that the property is given, ignoring the index location. The following formats are equivalent:

property[]=one
property[]=two
property[]=three
property[10]=one
property[1]=two
property[42]=three

The agent uses the index location only in the following cases:

  • When the value for an index location is empty:

    The agent deletes that location in the list. In the following example, the last value for index location [1] is empty:

    property[0]=one
property[1]=two
property[2]=three
property[1]=

    The agent deletes index location [1] from the list and then moves index location [2] to [1]. The final assignment is as follows:

    property[0]=one
property[1]=three

  • When the index location is empty and the value is empty:

    The agent deletes all values from the list; the list exists, but is empty. In the following example, the second value for index location [] is empty:

    property[]=one
property[]=
property[]=two
property[]=three

    The agent does the following:

    • Adds the text "one" to the list

    • Deletes all values from the list

    • Adds the text "two" into index location [0]

    • Adds the text "three" into index location [1]

    The final assignment is as follows:

    property[0]=two
property[1]=three

List of bootstrap properties

Property Description Function

org.forgerock.agents.filter.mode.map

Agent Filter Mode Map

Agent

org.forgerock.agents.profile.name

Agent Profile Name

Profile, Required

org.forgerock.agents.agent.profile.realm

Agent Profile Realm

Profile, Required

org.forgerock.agents.am.hostname

AM Authentication Service Host Name

Authentication service, Required

org.forgerock.agents.am.path

AM Authentication Service Path

Authentication service, Required

org.forgerock.agents.am.port

AM Authentication Service Port

Authentication service, Required

org.forgerock.agents.am.protocol

AM Authentication Service Protocol

Authentication service, Required

org.forgerock.agents.fallback.mode.enabled

Autonomous mode

Agent, Required

org.forgerock.agents.csv.monitoring.directory

CSV Monitoring Directory

Monitoring

org.forgerock.agents.lock.config.enabled

Enable Configuration Lock

Profile

org.forgerock.agents.http.client.reuse.connections.enabled

Enable HTTP Connection Reuse

Connection pooling

org.forgerock.agents.http.client.connection.state.enabled

Enable HTTP Connection State

Connection pooling

org.forgerock.agents.http.client.retry.requests.enabled

Enable HTTP Retry

Connection pooling

org.forgerock.agents.policy.change.notifications.enabled

Enable Notification of Policy Changes

Notifications

org.forgerock.agents.config.change.notifications.enabled

Enable Notifications of Agent Configuration Change

Notifications

org.forgerock.agents.prometheus.monitoring.enabled

Enable Prometheus Monitoring

Global

org.forgerock.agents.encryptor.classname

Encryption Class

Encryption, Required

org.forgerock.agents.sso.exchange.cache.ttl.minutes

Exchanged SSO Token Cache TTL

Profile

org.forgerock.agents.sso.expired.session.cache.ttl.minutes

Expired Session Cache Timeout

Session

org.forgerock.agents.http.client.connection.timeout.seconds

HTTP Connection Timeout

Connection pooling

org.forgerock.agents.http.client.socket.timeout.seconds

HTTP Socket Timeout

Connection pooling

org.forgerock.agents.not.enforced.rule.pattern.matcher.classname

Java Class for Matching Not Enforced Rules

Not-enforced

org.forgerock.agents.jwt.cache.ttl.minutes

JWT Cache TTL

Profile

org.forgerock.agents.jwt.cookie.name

JWT Cookie Name

Profile

org.forgerock.agents.local.audit.file.path

Local Audit Log Filename

Audit

org.forgerock.agents.config.location

Location of Agent Configuration Repository

Profile, Required

org.forgerock.agents.expired.session.cache.size

Max Entries in Expired Session Cache

Session

org.forgerock.agents.jwt.cache.size

Max Entries in JWT Cache

Profile

org.forgerock.agents.policy.cache.per.session.size

Max Entries in Policy Cache per Session

Policy enforcement

org.forgerock.agents.pdp.cache.size

Max Entries in POST Data Preservation Storage

POST data preservation

org.forgerock.agents.sso.exchange.cache.size

Max Entries in SSO Exchange Cache

Profile

org.forgerock.agents.http.client.max.connections

Max HTTP Connection Count

Connection pooling

org.forgerock.agents.policy.cache.session.size

Max Sessions in Policy Cache

Policy enforcement

org.forgerock.agents.auto.not.enforce.favicon

Not-Enforced Favicon

Not-enforced

org.forgerock.agents.policy.cache.ttl.minutes

Policy Cache TTL

Policy enforcement

org.forgerock.agents.pdp.cache.ttl.minutes

POST Data Preservation Cache TTL

POST data preservation

com.sun.identity.agents.config.postdata.preserve.cache.entry.ttl

POST Data Preservation Cache TTL in Milliseconds (deprecated)

POST data preservation

org.forgerock.agents.pdp.directory.sweep.seconds

POST Data Preservation Directory Sweep Interval

POST data preservation

org.forgerock.agents.pdp.cache.total.size.mb

POST Data Preservation Storage Size

POST data preservation

org.forgerock.agents.public.am.url

Public AM URL

Miscellaneous, Required

org.forgerock.agents.service.resolver.class.name

Service Resolver Class Name

Miscellaneous

org.forgerock.agents.session.cache.ttl.minutes

Session Cache TTL

Session

org.forgerock.agents.strategy.when.am.unavailable

Strategy when AM unavailable

Agent

List of all properties

Property Description (UI name) Function

org.forgerock.agents.access.denied.uri.map

Access Denied URI Map

Access denied

org.forgerock.agents.debug.level

Agent Debug Level

Logs

org.forgerock.agents.filter.mode.map

Agent Filter Mode Map

Agent

org.forgerock.agents.profile.name

Agent Profile Name

Profile, Required

org.forgerock.agents.agent.profile.realm

Agent Profile Realm

Profile, Required

org.forgerock.agents.agent.hostname

Alternative Agent Host Name

Agent

org.forgerock.agents.agent.port

Alternative Agent Port Number

Agent

org.forgerock.agents.agent.protocol

Alternative Agent Protocol

Agent

org.forgerock.agents.config.logout.session.invalidate.enabled

Always invalidate sessions

Logout

org.forgerock.agents.am.hostname

AM Authentication Service Host Name

Authentication service, Required

org.forgerock.agents.am.path

AM Authentication Service Path

Authentication service, Required

org.forgerock.agents.am.port

AM Authentication Service Port

Authentication service, Required

org.forgerock.agents.am.protocol

AM Authentication Service Protocol

Authentication service, Required

com.sun.identity.agents.config.login.url

AM Login URL List

Custom login redirect, Default Login Redirect, Login redirect, Login Redirect (Default)

org.forgerock.agents.audit.what

Audit Access Types

Audit

org.forgerock.agents.local.audit.log.retention.count

Audit Logfile Retention Count

Audit

org.forgerock.agents.audit.where

Audit Log Location

Audit

org.forgerock.agents.authn.exchange.cookie.name

Authentication Exchange Cookie Name

Login

org.forgerock.agents.authn.exchange.uri

Authentication Exchange URI

Login

org.forgerock.agents.authn.fail.reason.parameter.name

Authentication Fail Reason Parameter Name

Authentication failure

org.forgerock.agents.authn.fail.reason.remapper

Authentication Fail Reason Parameter Value Map

Authentication failure

org.forgerock.agents.authn.fail.url

Authentication Fail URL

Authentication failure

org.forgerock.agents.authn.redirect.uri

Authentication Redirect URI

Cross-domain single sign-on, Required

org.forgerock.agents.fallback.mode.enabled

Autonomous mode

Agent, Required

org.forgerock.agents.bad.advice.loop.termination.counter

Bad advice loop termination counter

Bad configuration detection

org.forgerock.agents.bad.advice.loop.termination.http.code

Bad advice loop termination HTTP status

Bad configuration detection

org.forgerock.agents.bad.advice.loop.termination.url

Bad advice loop termination URL

Bad configuration detection

org.forgerock.agents.http.header.containing.remote.hostname

Client Hostname Header

Client identification, Continuous security

org.forgerock.agents.http.header.containing.ip.address

Client IP Address Header

Client identification, Continuous security

org.forgerock.agents.acceptable.ip.address.map

Client IP Validation Address Map

Client identification

org.forgerock.agents.original.ip.check.mode.map

Client IP Validation Mode

Client identification

org.forgerock.agents.conditional.logout.url.list

Conditional Logout URL List

Logout

org.forgerock.agents.config.reload.seconds

Configuration Reload Interval

Profile

org.forgerock.agents.container.encoding

Container Character Encoding

Container, Not-enforced

org.forgerock.agents.container.param.encoding

Container Parameter Encoding

Container, Not-enforced

org.forgerock.agents.continuous.security.cookies.map

Continuous Security Cookie Map

Continuous security

org.forgerock.agents.continuous.security.headers.map

Continuous Security Header Map

Continuous security

org.forgerock.agents.accept.ipdp.cookie

Convert SSO Tokens Into OIDC JWTs

SSO cookie handling

org.forgerock.agents.cookie.reset.enabled

Cookie Reset

Cookie reset

org.forgerock.agents.attribute.cookie.separator

Cookie Separator Character

Attributes

org.forgerock.agents.csv.monitoring.directory

CSV Monitoring Directory

Monitoring

org.forgerock.agents.response.header.map

Custom Response Header Map

Miscellaneous

org.forgerock.agents.debug.prefix

Debug File Rotation Prefix (deprecated)

Deprecated

org.forgerock.agents.debug.retention.count

Debug File Rotation Retention Count (deprecated)

Deprecated

org.forgerock.agents.debug.rotation.size.bytes

Debug File Rotation Size (deprecated)

Deprecated

org.forgerock.agents.debug.suffix

Debug File Rotation Suffix (deprecated)

Deprecated

org.forgerock.agents.debug.rotation.time.minutes

Debug File Rotation Time (deprecated)

Deprecated

org.forgerock.agents.fqdn.default

Default FQDN

Fully qualified domain name

org.forgerock.agents.attribute.cookie.encode.enabled

Enable Attribute Encoding

Attributes

org.forgerock.agents.advice.b64.url.encode.enabled

Enable Composite Advice Encoding

Policy enforcement

org.forgerock.agents.lock.config.enabled

Enable Configuration Lock

Profile

org.forgerock.agents.use.connection.pooling.enabled

Enable Connection Pooling

Connection pooling

org.forgerock.agents.legacy.login.enabled

Enable Custom Login Mode

Custom login redirect, Default Login Redirect, Login redirect, Login Redirect (Default)

com.iplanet.am.cookie.encode

Enable Encoded Cookies

Cookie

org.forgerock.agents.fqdn.check.enabled

Enable FQDN Checking

Fully qualified domain name

org.forgerock.agents.302.redirects.enabled

Enable HTTP 302 Redirects

Global

org.forgerock.agents.http.client.reuse.connections.enabled

Enable HTTP Connection Reuse

Connection pooling

org.forgerock.agents.http.client.connection.state.enabled

Enable HTTP Connection State

Connection pooling

com.sun.identity.cookie.httponly

Enable HTTP Only Cookies

Cookie

org.forgerock.agents.http.client.retry.requests.enabled

Enable HTTP Retry

Connection pooling

org.forgerock.agents.ignore.path.info.enabled

Enable Ignore Path Info

Miscellaneous

org.forgerock.agents.legacy.support.enabled

Enable Legacy Support Handlers (deprecated)

Legacy support

org.forgerock.agents.load.balancer.cookies.enabled

Enable Load Balancer Cookies

Cookie

org.forgerock.agents.local.audit.log.rotation.enabled

Enable Local Audit Log Rotation

Audit

org.forgerock.agents.logout.introspection.enabled

Enable Logout Introspection

Logout

org.forgerock.agents.notenforced.ip.cache.enabled

Enable Not-Enforced IP Cache

Not-enforced

org.forgerock.agents.notenforced.uri.cache.enabled

Enable Not-Enforced URIs Cache

Not-enforced

org.forgerock.agents.policy.change.notifications.enabled

Enable Notification of Policy Changes

Notifications

com.iplanet.am.session.client.polling.enabled

Enable Notification of Session Logout (deprecated)

Notifications

org.forgerock.agents.session.change.notifications.enabled

Enable Notification of Session Logout

Notifications

org.forgerock.agents.config.change.notifications.enabled

Enable Notifications of Agent Configuration Change

Notifications

org.forgerock.agents.user.realm.overrides.policy.evaluation.realm.enabled

Enable Policy Evaluation in User Authentication Realm

Policy enforcement

org.forgerock.agents.port.check.enabled

Enable Port Checking (deprecated)

Port check

org.forgerock.agents.post.data.preservation.enabled

Enable POST Data Preservation

POST data preservation

org.forgerock.agents.prometheus.monitoring.enabled

Enable Prometheus Monitoring

Global

org.forgerock.agents.authn.success.redirect.session.url.enabled

Enable Redirect to AM Success URL

Login

org.forgerock.agents.accept.sso.tokens.enabled

Enable SSO Token Acceptance

Custom login redirect, Login redirect, SSO cookie handling

org.forgerock.agents.userid.mapping.mode.use.dn.enabled

Enable User Principal Flag

User mapping

org.forgerock.agents.encrypted.password

Encrypted Agent Password

Miscellaneous, Required

org.forgerock.agents.encryptor.classname

Encryption Class

Encryption, Required

org.forgerock.agents.encryption.key

Encryption Key/Salt

Authentication service, Encryption

org.forgerock.agents.sso.exchange.cache.ttl.minutes

Exchanged SSO Token Cache TTL

Profile

org.forgerock.agents.samesite.excluded.user.agents.list

Exclude Agents From Samesite Cookie Attributes

SameSite

org.forgerock.agents.sso.expired.session.cache.ttl.minutes

Expired Session Cache Timeout

Session

org.forgerock.agents.config.monitoring.to.csv

Export Monitoring Metrics to CSV

Monitoring

org.forgerock.agents.fallforward.mode.enabled

Fall-Forward Mode (deprecated)

Profile

org.forgerock.agents.attribute.date.format

Fetch Attribute Date Format

Attributes

org.forgerock.agents.fqdn.map

FQDN Map

Fully qualified domain name

org.forgerock.agents.authn.fragment.relay.uri

Fragment Relay URI

Fragment

org.forgerock.agents.continuous.security.get.list

GET Parameter List for URL Policy Env

Policy enforcement

com.sun.identity.agents.config.redirect.param

Goto Parameter Name

Global

org.forgerock.agents.default.goto.url

Goto URL

Authentication failure

org.forgerock.agents.302.redirect.http.content.type

HTTP 302 Redirect Content Type

Global

org.forgerock.agents.302.redirect.http.data

HTTP 302 Redirect Data

Global

org.forgerock.agents.config.json.url.invert

HTTP 302 Redirect Invert Not-Enforced List

Global

org.forgerock.agents.config.json.url

HTTP 302 Redirect Not-Enforced List

Global

org.forgerock.agents.302.redirect.http.status.code

HTTP 302 Redirect Replacement HTTP Status Code

Global

org.forgerock.agents.http.client.connection.timeout.seconds

HTTP Connection Timeout

Connection pooling

org.forgerock.agents.http.session.binding.enabled

HTTP Session Binding

Miscellaneous

org.forgerock.agents.http.client.socket.timeout.seconds

HTTP Socket Timeout

Connection pooling

org.forgerock.agents.idle.time.window.minutes

Idle Time Refresh Window

Miscellaneous

org.forgerock.agents.notenforced.ip.invert.enabled

Invert Not-Enforced IPs

Not-enforced

org.forgerock.agents.notenforced.uri.invert.enabled

Invert Not-Enforced URIs

Not-enforced

org.forgerock.agents.not.enforced.rule.pattern.matcher.classname

Java Class for Matching Not Enforced Rules

Not-enforced

org.forgerock.agents.continuous.security.http.session.list

JSession Parameter List for URL Policy Env

Policy enforcement

org.forgerock.agents.jwt.cache.ttl.minutes

JWT Cache TTL

Profile

org.forgerock.agents.jwt.cookie.domain.list

JWT Cookie Domain List

Profile

org.forgerock.agents.jwt.cookie.name

JWT Cookie Name

Profile

org.forgerock.agents.legacy.login.url.list

Legacy Login URL List

Custom login redirect, Default Login Redirect, Login redirect, Login Redirect (Default)

org.forgerock.agents.legacy.user.agent.list

Legacy User Agent List (deprecated)

Legacy support

org.forgerock.agents.legacy.redirect.uri

Legacy User Agent Redirect URI (deprecated)

Legacy support

org.forgerock.agents.load.balancer.cookie.name

Load Balancer Cookie Name

Cookie

org.forgerock.agents.local.audit.file.path

Local Audit Log Filename

Audit

org.forgerock.agents.local.audit.log.rotation.bytes

Local Audit Log Rotation Size

Audit

org.forgerock.agents.locale.country

Locale Country

Locale

org.forgerock.agents.locale.language

Locale Language

Locale

org.forgerock.agents.config.location

Location of Agent Configuration Repository

Profile, Required

com.iplanet.services.debug.directory

Log File Directory (deprecated)

Deprecated

org.forgerock.agents.login.attempt.limit.count

Login Attempt Limit

Login

org.forgerock.agents.login.counter.cookie.name

Login Attempt Limit Cookie Name

Login

org.forgerock.agents.login.reason.parameter.name

Login Reason Parameter Name

Custom login redirect, Login redirect

org.forgerock.agents.login.reason.remapper

Login Reason Value Map

Login

org.forgerock.agents.logout.goto.map

Logout Entry URI Map

Logout

org.forgerock.agents.logout.request.param.map

Logout Request Parameter Map

Logout

org.forgerock.agents.logout.endpoint.map

Logout URI Map

Logout

org.forgerock.agents.authn.cookie.max.age.seconds

Max Age of Pre-Authentication Cookie

Cookie, Pre-authentication

org.forgerock.agents.expired.session.cache.size

Max Entries in Expired Session Cache

Session

org.forgerock.agents.jwt.cache.size

Max Entries in JWT Cache

Profile

org.forgerock.agents.notenforced.ip.cache.size

Max Entries in Not-Enforced IP Cache

Not-enforced

org.forgerock.agents.notenforced.uri.cache.size

Max Entries in Not-Enforced URI Cache

Not-enforced

org.forgerock.agents.policy.cache.per.session.size

Max Entries in Policy Cache per Session

Policy enforcement

org.forgerock.agents.pdp.cache.size

Max Entries in POST Data Preservation Storage

POST data preservation

org.forgerock.agents.sso.exchange.cache.size

Max Entries in SSO Exchange Cache

Profile

org.forgerock.agents.http.client.max.connections

Max HTTP Connection Count

Connection pooling

org.forgerock.agents.max.decompression.size.bytes

Maximum Decompression Size

Cookie

org.forgerock.agents.policy.cache.session.size

Max Sessions in Policy Cache

Policy enforcement

org.forgerock.agents.pdp.noentry.url.map

Missing POST Data Preservation Entry URI Map

POST data preservation

org.forgerock.agents.notenforced.ip.list

Not-Enforced Client IP List

Not-enforced

org.forgerock.agents.notenforced.compound.separator

Not-Enforced Compound Rule Separator

Not-enforced

org.forgerock.agents.auto.not.enforce.favicon

Not-Enforced Favicon

Not-enforced

org.forgerock.agents.notenforced.uri.list

Not-Enforced URIs

Not-enforced

org.forgerock.agents.oauth.login.url.list

OAuth Login URL List

Custom login redirect, Default Login Redirect, Login redirect, Login Redirect (Default)

org.forgerock.agents.obsolete.notification.url

Obsolete Notification URL (deprecated)

Notifications

org.forgerock.agents.policy.cache.ttl.minutes

Policy Cache TTL

Policy enforcement

org.forgerock.agents.policy.evaluation.realm.map

Policy Evaluation Realm Map

Policy enforcement

org.forgerock.agents.policy.set.map

Policy Set Map

Policy enforcement

org.forgerock.agents.port.check.file

Port Check Filename (deprecated)

Port check

org.forgerock.agents.port.check.map

Port Check Protocol Map (deprecated)

Port check

org.forgerock.agents.pdp.cache.ttl.minutes

POST Data Preservation Cache TTL

POST data preservation

com.sun.identity.agents.config.postdata.preserve.cache.entry.ttl

POST Data Preservation Cache TTL in Milliseconds (deprecated)

POST data preservation

org.forgerock.agents.pdp.cookie.name

Post Data Preservation Cookie Name

Cookie, POST data preservation

org.forgerock.agents.pdp.directory.sweep.seconds

POST Data Preservation Directory Sweep Interval

POST data preservation

org.forgerock.agents.pdp.directory

POST Data Preservation File Directory

POST data preservation

org.forgerock.agents.pdp.use.filesystem.enabled

POST Data Preservation in Files or Cache

POST data preservation

org.forgerock.agents.pdp.parameter.limit.bytes

POST Data Preservation Max HTML Form Size

POST data preservation

org.forgerock.agents.pdp.sticky.session.value

POST Data Preservation Sticky Session Key Value

POST data preservation

org.forgerock.agents.pdp.sticky.session.mode

POST Data Preservation Sticky Session Mode

POST data preservation

org.forgerock.agents.pdp.cache.total.size.mb

POST Data Preservation Storage Size

POST data preservation

org.forgerock.agents.continuous.security.post.list

POST Parameter List for URL Policy Env

Policy enforcement

org.forgerock.agents.authn.cookie.name

Pre-Authentication Cookie Name

Cookie, Pre-authentication

org.forgerock.agents.cookie.signing.value

Pre-Authn and Post Data Preservation Cookie Signing Value

Cookie, POST data preservation, Pre-authentication

org.forgerock.agents.profile.attribute.fetch.mode

Profile Attribute Fetch Mode

Attributes, Cookie reset, Profile

org.forgerock.agents.profile.attribute.map

Profile Attribute Map

Profile

org.forgerock.agents.public.am.url

Public AM URL

Miscellaneous, Required

org.forgerock.agents.wanted.http.url.param.list

Query Parameter List for Policy Evaluation

Query parameter

org.forgerock.agents.am.unavailability.recheck.window.in.seconds

Recheck availability of AM

Agent

org.forgerock.agents.redirect.cookie.name

Redirect Attempt Cookie Name

Miscellaneous

org.forgerock.agents.redirect.attempt.limit

Redirect Attempt Limit

Login

org.forgerock.agents.wanted.http.url.params.regexp.list

Regex Query Parameters List for Policy Evaluation

Query parameter

org.forgerock.agents.unwanted.http.url.params.regex.list

Regex Remove Query Parameters List for Policy Evaluation

Query parameter

org.forgerock.agents.unwanted.http.url.param.list

Remove Query Parameters List for Policy Evaluation

Query parameter

org.forgerock.agents.cookie.reset.domain.map

Reset Cookie Domain Map

Cookie reset

org.forgerock.agents.cookie.reset.name.list

Reset Cookie List

Cookie reset

org.forgerock.agents.cookie.reset.path.map

Reset Cookie Path Map

Cookie reset

org.forgerock.agents.response.attribute.fetch.mode

Response Attribute Fetch Mode

Attributes, Response

org.forgerock.agents.response.attribute.map

Response Attribute Map

Response

org.forgerock.agents.restrict.to.realm.map

Restrict to Realm Map

Policy enforcement

org.forgerock.agents.retain.previous.override.behaviour.enabled

Retain previous override behaviour

Configure behaviour

org.forgerock.agents.service.resolver.class.name

Service Resolver Class Name

Miscellaneous

org.forgerock.agents.session.attribute.fetch.mode

Session Attribute Fetch Mode

Attributes, Cookie reset, Session

org.forgerock.agents.session.attribute.map

Session Attribute Map

Session

org.forgerock.agents.session.cache.ttl.minutes

Session Cache TTL

Session

org.forgerock.agents.set.cookie.attribute.map

Set-Cookie Attribute Map

SameSite

org.forgerock.agents.set.cookie.internal.map

Set-Cookie Internal Map

SameSite

org.forgerock.agents.ipdp.cookie.domain.list

SSO Cookie Domain List

SSO cookie handling

org.forgerock.agents.strategy.when.am.unavailable

Strategy when AM unavailable

Agent

org.forgerock.agents.secure.cookies.enabled

Transmit Cookies Securely

Cross-domain single sign-on

org.forgerock.agents.user.mapping.mode.attribute.name

User Attribute Name

User mapping

org.forgerock.agents.user.mapping.mode

User Mapping Mode

User mapping

org.forgerock.agents.userid.mapping.mode.use.session.property.name

User Session Name

User mapping

org.forgerock.agents.balance.websocket.interval.minutes

WebSocket Connection Interval

Profile

org.forgerock.agents.declare.websocket.dead.after.milliseconds

Websocket Expired Timeout

Timeout

org.forgerock.agents.ping.websocket.after.inactive.milliseconds

Websocket Idle Timeout

Timeout

org.forgerock.agents.xss.code.element.list

XSS Code Element List

Cross-site scripting

org.forgerock.agents.xss.redirect.uri.map

XSS Redirect URI Map

Cross-site scripting