Versions Compared

Old Version 1

changes.mady.by.user Former user

Saved on

compared with

New Version 2

changes.mady.by.user IT Stonebranch

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Macro name changed from html to html-bobswift during server to cloud migration processing.

...

Field

Description

Event Management Options

Delete Persistent events after
This option specifies how long, in seconds, an event message that is identified as a persistent event will wait to be received by a Universal Enterprise Controller (UEC). Persistent event messages are those whose types are contained in the event generation list. If a persistent event message is not delivered to UEC within the specified time, the Universal Broker will delete the event record from its local Universal Event Subsystem (UES) database.
 
The default value for this option is 172800 seconds, which is equivalent to 2 days.
 
Delete Monitoring events after
This option sepcifies the maximum amount of time, in seconds, event messages used for product activity monitoring will remain in the Universal Broker's local Universal Event Subystem (UES) database. If a monitoring event message is not delivered to a Universal Enterprise Controller (UEC) within the specified time, the Broker will delete the record from its local UES database.
 
The default value for this option is 600 seconds.

Event Generation Options

Field

Description

Access Control List

Displays the entries contained in the Universal Broker Access Control List (ACL). This list is used to grant or deny access to Universal Broker based on the

Generate Activity monitoring events
When this option is selected, the Universal Broker will generate events that monitor product activity. This option is selected by default.
 
Persistent event list
Specifies which events are to be generated and processed as persistent events. A persistent event is saved in a Universal Enterprise Controller (UEC) event database for long-term storage.
Enter a list and/or range of numeric event types, separated by a comma. To exclude an event or range of events, precede the entry with an upper- or lower-case 'X'. Use an asterisk ( * ) to specify all event types.
 
For example:

Entries are processed from left to right, and the list is order dependent. For example, an entry of x*,100 prevents generation of all event types except 100, while an entry of 100,x* prevents generation of all event types (the right-most entry takes precedence).

Universal Broker: Access Control Lists

Image Removed

Universal Broker: Access Control Lists - Access ACL

Image Removed

Html bobswift
<ul>
<li> x*<br>
Do not generate any events (this is the default)
<li> \*<br>
Generate all event types 
<li> 100<br>
Generate all event types except 100 
<li> 100,200-205<br>
Generate event type 100 and 200 through 205
<li> 100,200-205,x202<br>
Generate event types 100 and 200 thru 205, excluding event type 202 
</ul>

Entries are processed from left to right, and the list is order dependent. For example, an entry of x*,100 prevents generation of all event types except 100, while an entry of 100,x* prevents generation of all event types (the right-most entry takes precedence).

Universal Broker: Access Control Lists

Image Added

Universal Broker: Access Control Lists - Access ACL

Image Added

Field

Description

Access Control List

Displays the entries contained in the Universal Broker Access Control List (ACL). This list is used to grant or deny access to Universal Broker based on the remote system's IP address. The order in which ACL entries are evaluated and applied are based on their position in this list. Use the Move Up and Move Down buttons to change an entry's priority.

Add Button

Displays a dialog box that allows an entry to be added to the Access Control List. The fields in this dialog are populated with default values.
 

 
Remote Host Name/IP Address
The IP address or name of the remote host for which access will be allowed or denied. To apply an access control entry to all IP addresses, use the keyword ALL (in all caps).
 
Access Type
Will cause the Universal Broker to accept/reject incoming connections from the specified host.

Edit Button

Displays a dialog that allows the selected Access Control List entry to be modified.
 

 
Remote Host Name/IP Address
The IP address or name of the remote host for which access will be allowed or denied. To apply an access control entry to all IP addresses, use the keyword ALL (in all caps).
 
Access Type
Will cause the Universal Broker to accept/reject incoming connections from the specified host.

Delete Button

Removes the selected item from the Access Control List.

Move Up Button

Moves the selected item up one position in the list.

Move Down Button

Moves the selected item down one position in the list.

...

Field

Description

Certificate Map ACL List Box

Displays the entries contained in the X.509 certificate mapping. The order in which entries are evaluated and applied are based on their position in this list. Use the Move Up and Move Down buttons to change an entry's priority.

Add Button

Displays a dialog box that allows an entry to be added to the Access Control List. The fields in this dialog are populated with default values.
 

 
Certificate ID
The value entered here is used as a key to establish a mapping between this entry and a Universal ACL entry that may reference it.
 
Subject
The value entered here is used to match the subject field of an installed X.509 certificate. The subject contains properties of the entity identified by the certificate. It is formatted as an X.501 Distinguished Name (DN), which is a hierarchical list of attributes referred to as Relative Distinguished Names (RDNs).
 
Some of the more common RDN values that may be used in a DN include:

The following are examples of Distinguished Names:

E-Mail Address
The value entered here is used to match an installed X.509 certificate by comparing the dNSName of the subjectAltName extension value or the commonName (CN) Relative Distinguished Name attribute of a Distinguished Name's subject field. The host name entered here may contain wildcards. For example, *.acme.com.
 
Host Name
The value entered here is used to match an installed X.509 certificate by comparing the dNSName of the subjectAltName extension value or the commonName (CN) Relative Distinguished Name attribute of a Distinguished Name's subject field. The host name entered here may contain wildcards. For example, *.acme.com.
 
IP Address
The value entered here is used to match an installed X.509 certificate by comparing the iPAddress of the subjectAltName extension value. The IP Address entered must be in dotted decimal format (i.e., xx.xx.xx.xx).
 
Serial Number
Html bobswift
<ul>
<li> C <br>
Country Name
<li> CN <br>
Common Name
<li> L <br>
Locality
<li> O <br>
Organization
<li> OU <br>
Organizational Unit
<li> ST <br>
State
</ul>

The following are examples of Distinguished Names:

Html bobswift
<ul>
<li> /C=US/ST=Georgia/L=Atlanta/O=Stonebranch, Inc./OU=R & D/CN=Joe Simson/
<li> /C=US/ST=Georgia/L=Atlanta/O=Stonebranch, Inc./OU=Operations/
<li> /C=US/ST=Georgia/L=Atlanta/O=Stonebranch, Inc./OU=Operations/CN=UEC/
</ul>

E-Mail Address
The value entered here is used to match the Serial Number of an installed X.509 certificate . Please note that serial numbers are not unique across all certificates, only for those certificates provided by specific Certificate Authorities (CA's).

Edit Button

Displays a dialog that allows the selected Access Control List entry to be modified.
 
Image Removed
 
Certificate ID
by comparing the dNSName of the subjectAltName extension value or the commonName (CN) Relative Distinguished Name attribute of a Distinguished Name's subject field. The host name entered here may contain wildcards. For example, *.acme.com.
 
Host Name
The value entered here is used as a key to establish a mapping between this entry and a Universal ACL entry that may reference itto match an installed X.509 certificate by comparing the dNSName of the subjectAltName extension value or the commonName (CN) Relative Distinguished Name attribute of a Distinguished Name's subject field. The host name entered here may contain wildcards. For example, *.acme.com.
 
SubjectIP Address
The value entered here is used to match the subject field of an installed X.509 certificate . The subject contains properties of the entity identified by the certificate. It is formatted as an X.501 Distinguished Name (DN), which is a hierarchical list of attributes referred to as Relative Distinguished Names (RDNs).
 
Some of the more common RDN values that may be used in a DN include:The following are examples of Distinguished Names:by comparing the iPAddress of the subjectAltName extension value. The IP Address entered must be in dotted decimal format (i.e., xx.xx.xx.xx).
 
Serial Number
The value entered here is used to match the Serial Number of an installed X.509 certificate. Please note that serial numbers are not unique across all certificates, only for those certificates provided by specific Certificate Authorities (CA's).

Edit Button

Displays a dialog that allows the selected Access Control List entry to be modified.
 
Image Added
 
Certificate ID
The value entered here is used as a key to establish a mapping between this entry and a Universal ACL entry that may reference it.
 
Subject
The value entered here is used to match the subject field of an installed X.509 certificate. The subject contains properties of the entity identified by the certificate. It is formatted as an X.501 Distinguished Name (DN), which is a hierarchical list of attributes referred to as Relative Distinguished Names (RDNs).
 
Some of the more common RDN values that may be used in a DN include:

Html bobswift
<ul>
<li> C <br>
Country Name
<li> CN <br>
Common Name
<li> L <br>
Locality
<li> O <br>
Organization
<li> OU <br>
Organizational Unit
<li> ST <br>
State
</ul>

The following are examples of Distinguished Names:

Html bobswift
<ul>
<li> /C=US/ST=Georgia/L=Atlanta/O=Stonebranch, Inc./OU=R & D/CN=Joe Simson/
<li> /C=US/ST=Georgia/L=Atlanta/O=Stonebranch, Inc./OU=Operations/
<li> /C=US/ST=Georgia/L=Atlanta/O=Stonebranch, Inc./OU=Operations/CN=UEC/
</ul>

E-Mail Address
The value entered here is used to match an installed X.509 certificate by comparing the dNSName of the subjectAltName extension value or the commonName (CN) Relative Distinguished Name attribute of a Distinguished Name's subject field. The host name entered here may contain wildcards. For example, *.acme.com.
 
Host Name
The value entered here is used to match an installed X.509 certificate by comparing the dNSName of the subjectAltName extension value or the commonName (CN) Relative Distinguished Name attribute of a Distinguished Name's subject field. The host name entered here may contain wildcards. For example, *.acme.com.
 
IP Address
The value entered here is used to match an installed X.509 certificate by comparing the iPAddress of the subjectAltName extension value. The IP Address entered must be in dotted decimal format (i.e., xx.xx.xx.xx).
 
Serial Number
The value entered here is used to match the Serial Number of an installed X.509 certificate. Please note that serial numbers are not unique across all certificates, only for those certificates provided by specific Certificate Authorities (CA's).

Delete Button

Removes the selected item from the Access Control List.

Move Up Button

Moves the selected item up one position in the list.

Move Down Button

Moves the selected item down one position in the list.

...