Object Request Broker (ORB) (orb)

Configuration for a server or client ORB. Specify either the nameService attribute for a client ORB or one or more iiopEndpoint references for a server ORB.

Attribute name Data type Default value Description
id string   A unique configuration ID.
iiopEndpointRef List of references to top level iiopEndpoint elements (comma-separated string). defaultIiopEndpoint Optional IIOP Endpoint describing the ports open for this ORB
nameService string corbaname::localhost:2809 Optional URL for the remote name service, for example corbaname::localhost:2809
clientPolicy.clientContainerCsiv2
Description: A unique configuration ID.
Required: false
Data type:
Attribute name Data type Default value Description
id string   A unique configuration ID.
clientPolicy.clientContainerCsiv2 > layers
Description: Specify the CSIv2 layers like transport, authentication, and attribute.
Required: false
Data type:
clientPolicy.clientContainerCsiv2 > layers > authenticationLayer
Description: Determine the authentication mechanisms and association options to be performed by the client for outgoing CSIv2 requests.
Required: false
Data type:
Attribute name Data type Default value Description
establishTrustInClient
  • Required
  • Never
  • Supported
Supported Specify if this association option is Supported, Required, or Never used for this layer. It indicates the authentication requirements at the authentication layer.
Required
The association option is required
Never
The association option must not be used
Supported
The association option is supported
password Reversably encoded password (string)   The user password that is used with the user name.
user string   The user name that is used to login to the remote server.
clientPolicy.clientContainerCsiv2 > layers > authenticationLayer > mechanisms
Description: Specifies authentication mechanisms as a comma separated list. For example: GSSUP
Required: false
Data type: string
clientPolicy.clientContainerCsiv2 > layers > transportLayer
Description: Configure how to trust the client.
Required: false
Data type:
Attribute name Data type Default value Description
sslEnabled boolean true Indicate by true or false whether SSL is enabled for CSIv2 requests. Default is true and is the recommended value. If this attribute is set to false, sensitive information such as passwords and tokens are sent over unsecured channels when using IIOP.
sslRef A reference to top level ssl element (string).   Specify the SSL configuration needed to establish a secure connection.
clientPolicy.csiv2
Description: A unique configuration ID.
Required: false
Data type:
Attribute name Data type Default value Description
id string   A unique configuration ID.
clientPolicy.csiv2 > layers
Description: Specify the CSIv2 layers like transport, authentication, and attribute.
Required: false
Data type:
clientPolicy.csiv2 > layers > attributeLayer
Description: Determine the attribute layer options to be performed by the client for outgoing CSIv2 requests.
Required: false
Data type:
Attribute name Data type Default value Description
identityAssertionEnabled boolean false Indicate by true or false whether identity assertion is enabled. Default is false.
trustedIdentity string   The trusted identity used to assert an entity to the remote server.
trustedPassword Reversably encoded password (string)   Specify the password that is used with the trusted identity.
clientPolicy.csiv2 > layers > attributeLayer > identityAssertionTypes
Description: Specify the supported identity token types for identity assertion.
Required: false
Data type:
clientPolicy.csiv2 > layers > authenticationLayer
Description: Determine the authentication mechanisms and association options to be performed by the client for outgoing CSIv2 requests.
Required: false
Data type:
Attribute name Data type Default value Description
establishTrustInClient
  • Required
  • Never
  • Supported
Supported Specify if this association option is Supported, Required, or Never used for this layer. It indicates authentication requirements at the authentication layer.
Required
The association option is required
Never
The association option must not be used
Supported
The association option is supported
clientPolicy.csiv2 > layers > authenticationLayer > mechanisms
Description: Specifies authentication mechanisms as a comma separated list. For example: GSSUP, LTPA
Required: false
Data type: string
clientPolicy.csiv2 > layers > transportLayer
Description: Configure how to trust the client.
Required: false
Data type:
Attribute name Data type Default value Description
sslEnabled boolean true Indicate by true or false whether SSL is enabled for CSIv2 requests. Default is true and is the recommended value. If this attribute is set to false, sensitive information such as passwords and tokens are sent over unsecured channels when using IIOP.
sslRef A reference to top level ssl element (string).   Specify the SSL configuration needed to establish a secure connection.
iiopEndpoint
Description: Optional IIOP Endpoint describing the ports open for this ORB
Required: false
Data type:
Attribute name Data type Default value Description
host string localhost IP address, domain name server (DNS) host name with domain name suffix, or just the DNS host name
id string   A unique configuration ID.
iiopPort int   Port for the unsecured server socket opened by this IIOP endpoint
tcpOptionsRef A reference to top level tcpOptions element (string). defaultTCPOptions TCP protocol options for the IIOP endpoint
iiopEndpoint > iiopsOptions
Description: Specification of a secured server socket opened by this IIOP endpoint
Required: false
Data type:
Attribute name Data type Default value Description
id string   A unique configuration ID.
iiopsPort int   Specify the port to be configured with the SSL options.
sessionTimeout A period of time with second precision 1d Amount of time to wait for a read or write request to complete on a socket. This value is overridden by protocol-specific timeouts. Specify a positive integer followed by a unit of time, which can be hours (h), minutes (m), or seconds (s). For example, specify 30 seconds as 30s. You can include multiple values in a single entry. For example, 1m30s is equivalent to 90 seconds.
sslRef A reference to top level ssl element (string).   The default SSL configuration repertoire. The default value is defaultSSLSettings.
sslSessionTimeout A period of time with millisecond precision 8640ms The timeout limit for an SSL session that is established by the SSL Channel. Specify a positive integer followed by a unit of time, which can be hours (h), minutes (m), seconds (s), or milliseconds (ms). For example, specify 500 milliseconds as 500ms. You can include multiple values in a single entry. For example, 1s500ms is equivalent to 1.5 seconds.
suppressHandshakeErrors boolean false Disable logging of SSL handshake errors. SSL handshake errors can occur during normal operation, however these messages can be useful when SSL is behaving unexpectedly.
iiopEndpoint > tcpOptions
Description: TCP protocol options for the IIOP endpoint
Required: false
Data type:
Attribute name Data type Default value Description
inactivityTimeout A period of time with millisecond precision 60s Amount of time to wait for a read or write request to complete on a socket. This value is overridden by protocol-specific timeouts. Specify a positive integer followed by a unit of time, which can be hours (h), minutes (m), seconds (s), or milliseconds (ms). For example, specify 500 milliseconds as 500ms. You can include multiple values in a single entry. For example, 1s500ms is equivalent to 1.5 seconds.
soReuseAddr boolean true Enables immediate rebind to a port with no active listener.
serverPolicy.csiv2
Description: A unique configuration ID.
Required: false
Data type:
Attribute name Data type Default value Description
id string   A unique configuration ID.
serverPolicy.csiv2 > layers
Description: Specify the CSIv2 layers like transport, authentication, and attribute.
Required: false
Data type:
serverPolicy.csiv2 > layers > attributeLayer
Description: Determine the attribute layer options that are claimed by the server for incoming CSIv2 requests.
Required: false
Data type:
Attribute name Data type Default value Description
identityAssertionEnabled boolean false Indicate by true or false whether identity assertion is enabled. Default is false.
trustedIdentities string   Specify a pipe (|)-separated list of server identities, which are trusted to perform identity assertion to this server. A value of “*” is also accepted to indicate implicit trust (trust anyone).
serverPolicy.csiv2 > layers > attributeLayer > identityAssertionTypes
Description: Specify the supported identity token types for identity assertion.
Required: false
Data type:
serverPolicy.csiv2 > layers > authenticationLayer
Description: Determine the authentication mechanisms and association options that are claimed by the server for incoming CSIv2 requests.
Required: false
Data type:
Attribute name Data type Default value Description
establishTrustInClient
  • Required
  • Never
  • Supported
Required Specify if this association option is Supported, Required, or Never used for this layer. It indicates authentication requirements at the authentication layer.
Required
The association option is required
Never
The association option must not be used
Supported
The association option is supported
serverPolicy.csiv2 > layers > authenticationLayer > mechanisms
Description: Specifies authentication mechanisms as a comma separated list. For example: GSSUP, LTPA
Required: false
Data type: string
serverPolicy.csiv2 > layers > transportLayer
Description: Configure how to trust the client.
Required: false
Data type:
Attribute name Data type Default value Description
sslEnabled boolean true Indicate by true or false whether SSL is enabled for CSIv2 requests. Default is true and is the recommended value. If this attribute is set to false, sensitive information such as passwords and tokens are sent over unsecured channels when using IIOP.
sslRef A reference to top level ssl element (string).   Specify the SSL configuration needed to establish a secure connection.

Icon that indicates the type of topic Reference topic



Timestamp icon Last updated: Saturday, 3 December 2016
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=cord&product=was-nd-mp&topic=rwlp_config_orb
File name: rwlp_config_orb.html