Configure Dashboard properties - dashboard.properties
The Dashboard configuration file (dashboard.properties) is located in the <pi_install_dir>/dashboard/config/ directory. The following table explains the parameters and provides recommended values.
| Parameter | Description | ||
|---|---|---|---|
ABS IP, port, log level, and JKS password |
|||
|
ABS URL |
||
|
ABS port number. Default value is 8080. |
||
|
Set the value, to enable or disable SSL connection with ABS. Valid values are |
||
|
Set the value, to enable or disable restricted user access to ABS. Valid values are |
||
|
ABS access key. |
||
|
ABS secret key. |
||
|
ABS query polling interval in minutes. Default value is 10 minutes. |
||
|
ABS query offset in minutes. Minimum value is 30 minutes. |
||
Publish to UI,Elasticsearch distribution type, Elasticssearch URL, Elasticsearch username, Elasticsearch password, ILM policy, Kibana version |
|||
|
Set the value, to enable or disable publishing of attack information and other metrics to the dashboard. Valid values are |
||
|
Elasticsearch distribution type. Valid values are |
||
|
Elasticsearch URL. |
||
|
The username credential to Elasticsearch. |
||
|
The password credentials to Elasticsearch. |
||
|
Location of Index Lifecycle Management (ILM) policy. If a policy is provided, it should be a valid JSON file. It is not a mandatory policy. The default directory is |
||
|
Location of Index State Management (ISM) policy. If a policy is provided, it should be a valid JSON file and |
||
|
Kibana version. The default value is 6.8.1. |
||
Log4j2 configuration properties |
|||
|
Set the value, to enable publishing attack details to Log4j2. Valid values |
||
|
Log4j2 configuration file to log attacks to an external service. For example, |
||
|
Log4j2 log level for attack logging. The default value is |
||
|
Directory for any log4j2 config dependency jar’s. This is useful for third party log4j2 appenders. Default directory is |
||
Log level, Timezone configuration |
|||
|
The applicable log levels. Valid values are : all, trace, debug, info, warn, error,fatal, off. Default value is |
||
|
Set timezone configuration for Dashboard. Valid values are |
||
Dashboard fastforward properties
|
|||
|
Dashboard fast forward earlier time. Allowed format is |
||
|
Dashboard fast forward later time. Allowed format is |
||
|
Dashboard query range in minutes. It should be multiples of ten. Minimum value is ten. |
||
|
Cooling period between each query polling batch in seconds. Minimum value is 30 seconds. |
||
The following is a sample dashboard.properties file.
# Dashboard properties file # ABS # ABS Hostname/IPv4 address abs.host=127.0.0.1 # ABS REST API port abs.port=8080 # ABS SSL enabled ( true/false ) abs.ssl=true # ABS Restricted user access ( true/false ) abs.restricted_user_access=false # ABS access key abs.access_key=OBF:AES:NuBmDdIhJM7KOB3BbXr4db5DfGJcrA==:hUsqFeTUmH5cOjiUPyws9WwTPYw9yAg0C1X1HSmSI30= # ABS secret key abs.secret_key=OBF:AES:NuBmDcAhXgsQu8qzJgIo1Mq97B/PVw==:7GpDn83ZAU6GRKYsZe86x0gdnYOZfTbi8rUimDW100o= # ABS query polling interval (minutes) abs.query.interval=10 # ABS query offset (minutes. minimum value 30 minutes) abs.query.offset=30 # UI # publish attacks+metrics to UI. Valid values true or false publish.ui.enable=true # elasticsearch Distribution Type # valid values are default and aws es.distro.type=default # elasticsearch URL es.url=https://localhost:9200/ # elasticsearch username. User should have manage_security privilege # If elasticsearch is NOT configured with authentication security, leave this blank es.username=elastic # elasticsearch user password es.password=OBF:AES:NOp0PNQvc/RLUN5rbvZLtTPghqVZzD9V:+ZGHbhpY4HENYYqJ4wn50AmoO6CZ3OcfjqTYQCfgBgc= # index lifecycle management (ILM) policy,it can be empty # If a policy is provided, it should be a valid JSON file es.index.dashboard.activity.ilm.policy=config/ilm.json # index stae management (ISM) policy,it can be empty # If a policy is provided, it should be a valid JSON file es.index.dashboard.activity.ism.policy=config/ism.json # kibana version kibana.version=6.8.1 # Log4j2 # publish attacks to Log4j2. Valid values true or false # By default it provides syslog support publish.log4j2.enable=false # log4j2 config file to log attacks to an external service. For example, Syslog # use com.pingidentity.abs.publish as logger name in log4j2 configuration log4j2.config=config/syslog.xml # log4j2 log level for attack logging log4j2.log.level=INFO # directory for any log4j2 config dependency jar's. # useful for third party log4j2 appenders # it should be a directory log4j2.dependencies.dir=plugins/ # Log level dashboard.log.level=INFO # Timezone configuration # valid values: local, utc dashboard.timezone=local ## Fastforward. Only applicable if dashboard is started with 'start.sh --fast-forward' # earlier time. format YYYY-MM-DDTHH:mm # E.g 2019-07-12T10:00 dashboard.fastforward.earlier_time=2019-07-12T10:00 # later time. format YYYY-MM-DDTHH:mm # E.g 2019-11-13T23:50 dashboard.fastforward.later_time=2019-11-13T23:50 # query range in minutes. It should be multiple of 10 # minimum value is 10 dashboard.fastforward.query.range=60 # cooling period between each query polling batch in seconds # minimum value 30 seconds dashboard.fastforward.query.cooling_period=60