Configuring the Agent
The initialization (.ini) file is used to configure parameters for operating systems and programs. Edit the SAS_PAMConf.ini file, available at /usr/local/.
The following options can be configured:
-
Encryption key file path: The agent encryption key file is used to encrypt/decrypt the data. Provide the path of the agent BSID key below:
EncryptionKeyFile=/usr/local/thales/pam/bsidkey/Agent.bsidkeyNote
If you are moving from one SafeNet server version to another, the key file needs be downloaded (and updated above) by performing the following steps:
-
Login to SafeNet server account, and navigate to COMMS > Authentication Processing section.
-
Under the Task list, click Authentication Agent Settings link and download the key.
The key file must be kept at a location that is accessible by all the authorized users.
-
-
Primary BSID Server URL: Provide the IP address of the primary authentication server.
PrimaryServiceURL=<IP> -
Secondary BSID Server URL (Optional): Provide the IP address of the secondary authentication server, if applicable.
SecondaryServiceURL=<IP> -
Log file full path and Log level: Specify the location where the log files will be saved. In addition, adjust the logging level as per the following definitions:
1 – Error, 2 – Info (Default), 3 – Debug
LogFile=/usr/local/thales/pam/logs/SAS_PAM_Logs-{date}.log LogLevel=2 -
Enable/Disable SSL: This option allows to enable/disable SSL requests to the TokenValidator. The SSL option is enabled by default. To disable, change the value to 0.
EnableSSL=1 -
TokenValidator path: This setting is used for the SafeNet server internal purposes. We recommend not to edit this setting.
TokenValidatorURL=/TokenValidator/TokenValidator.asmx -
AutoPush: If AutoPUSH is enabled (value set to 1), a PUSH request will be sent to the user’s mobile device automatically. Enable this option only if all user accounts on the server have Push tokens assigned.
Default: 0 AutoPush=0
