Manualshelf

Installation guide

ManualsBrandsRed Hat ManualsComputer equipmentNETSCAPE DIRECTORY SERVER 6.02 - DEPLOYMENT
11121314151617181920
Before You Begin Installation
Chapter 1 Read This First 19
com.sun.am.policy.am.loginURL= http://
primary_Identity
_Server.example
.com:58080/amserver/UI/Login http://
failover_Identity
_Server.example
.com:58080/amserver/UI/Login
Thefailover server nameisconfigurableafter it hasbeensetduring the installation.
In the properties file, it is the second entry in this property following the primary
Sun ONE Identity Server login URL separated by a space.
Updating the Agent Cache
Each agent maintains a cache that stores the policies for every user’s session. The
cache can be updated by either a cache expiration mechanism or a notification
mechanism.
Cache Updates
The agent maintains a cache of all active sessions. Once an entry is added to the
cache, it remains valid for a period of time after which the entry is considered
expired and later purged.
The property com.sun.am.policy.am.cacheEntryLifeTime in
AMAgent.properties determines the number of minutes an entry will remain in
the agent cache. Once the interval specified by this property has elapsed, the entry
is dropped from the cache. By default, the expiration time is set to three minutes.
Hybrid Cache Updates
In this mode, cache entry expiration still applies. In addition, the agent gets
notified by the Sun ONE Identity Server service about session changes. Session
changes include events such as session logout or a session timeout. When notified
of a session or a policy change, the agent updates the corresponding entry in the
cache. Apart from session updates, agents can also receive policy change updates.
Policy changes include events such as updating, deleting, and creating policies.
Sun ONE Identity Server web policy agents have the hybrid cache update mode
switched on by default. This is triggered by the property
com.sun.am.policy.am.notificationEnabled in the AMAgent.properties file,
which is set to true. When the property is set to false, the agent updates its cache
through cache entry expiration mechanism only.
Restrictions due to firewalls, as well as the type of web server in use, might not
allow notifications to work. In such cases, notification is turned off.