JMX values (Managed Bean or MBean attributes) are exposed in the SkyVault Admin
Console and with internal tools (SkyVault JMX Dump) or external tools like JConsole. The SAML SSO beans are described here with their default values.
Example values are given. Always check the values in our own system as these can vary depending on the install method or operating system.
CAUTION:
Be aware that any changes you make to attributes in the live system are
written to the database. The next time that SkyVault starts, these values will take
precedence over any values specified in properties files.
SkyVault:Type=Configuration, Category=SAML, Object Type=SAML$managed$share
| Attribute name | Example value |
|---|---|
| $type | share |
| idpCertificateExpiryDate | |
| idpCertificateSerialNumber | |
| idpCertificateStatus | missing |
| idpCertificateSubject | |
| instancePath | [managed, share] |
| saml.issueInstantRule.check.clock.skew.in.seconds | 60 |
| saml.issueInstantRule.check.expiration.in.seconds | 30 |
| saml.keystore.keyMetaData.location | classpath:alfresco/keystore/saml-keystore-passwords.properties |
| saml.keystore.location | classpath:alfresco/keystore/saml.keystore |
| saml.keystore.provider | |
| saml.keystore.type | JCEKS |
| saml.message.state.duration.in.millis | 300000 |
| saml.share.spSloRequestURLSuffix | /saml-logoutrequest |
| saml.share.spSloResponseURLSuffix | /saml-logoutresponse |
| saml.share.spSsoURLSuffix | /saml-authnresponse |
| saml.sp.idp.certificatePath | Set the path to the certificate you require |
| saml.sp.idp.slo.request.url | |
| saml.sp.idp.slo.response.url | |
| saml.sp.idp.spIssuer | |
| saml.sp.idp.spIssuer.namePrefix | |
| saml.sp.idp.sso.request.url | |
| saml.sp.isEnabled | false |
| saml.sp.isEnforced | true |
| saml.sp.idp.description | <Identity Provider> |
| saml.sp.user.mapping.email | |
| saml.sp.user.mapping.firstName | GivenName |
| saml.sp.user.mapping.id | Subject/NameID |
| saml.sp.user.mapping.lastName | Surname |
| spSigningCredentialStatus | missing |
SkyVault:Type=Configuration, Category=SAML, Object Type=SAML$manager
| Attribute name | Example value |
|---|---|
| chain | share:share,rest-api:repository,aos:repository |
For the complete list of SkyVault MBeans, see JMX bean
categories reference.