Administrative Account Cluster Properties
The Administrative Account cluster properties control the settings for the administrative user accounts. These properties correspond to the settings found under the task in the Policy Manager.
gateway83
The Administrative Account cluster properties control the settings for the administrative user accounts. These properties correspond to the settings found under the Manage Administrative User Account Policy task in the Policy Manager.
Property | Description |
|---|---|
logon.inactivityPeriod | Days that an account can be inactive before it is disabled. Range: 0-365 days (a value of '0' resets back to the default of 35 days) Default: 35 (days) The inactivity timeout does not apply to the 'admin' user. |
logon.lockoutTime | Time a user must wait after reaching the logon.maxAllowableAttempts before another login attempt can be made.Default: 1200 (seconds) |
logon.maxAllowableAttempts | Number of failed login attempts before the account is locked. For the lockout period, see the logon.lockoutTime setting. Default: 5 |
logon.sessionExpiry | Time that the administrative user can leave the API Gateway session idle before disconnection.Range: 1-1440 minutes Default: 30 (minutes)Browser Client Users Avoid setting logon.sessionExpiry to a low value, as user activity might not be detected correctly. For example, a session could expire even when the browser client is actively editing a policy editing (though not accessing the CA API Gateway ). For this reason, avoid setting logon.sessionExpiry to a low value if the browser client is used. |
logon.warningBanner | The warning message that is displayed to the user after logging in to the Policy Manager. The user must accept this warning to continue or be disconnected. Default: blank (no warning banner is displayed) |