Configuring optional parameters

About this task

The following optional parameters can be used to further configure your broker.

Global parameters

FIPSCompliance

Determines whether a FIPS certified cryptographic provider is used for all cryptographic functions. Default value is No.

SP800131ACompliance

Determines whether NIST SP800-131A compliant algorithms and key strengths are used for all cryptographic functions. Default value is No.

HTTPSStrictValidation

Determines whether the broker uses the system truststore to verify HTTPS connections to the server. Default value is No.

Request Pool

An area of memory that is known as the Request Pool is used to track requests. The connection requests from other brokers are kept in the pool until the pool is full and the oldest requests are recycled. The following parameters can be used to configure the request pool:

Request Pool.size: The amount of memory, in kilobytes, to reserve for the request pool. The default is 2048 or 2 megabytes.
Request Pool.MinimumTTL: The minimum time, in minutes, before a request can be recycled. The default is 5 minutes.

RecordingDir

Use RecordingDir to define the directory that the session recording is temporarily stored on the broker if Force Session Recording is set to Yes.

For example, RecordingDir=c:\\tmp. When you are using a backslash in the path, you must enter two backslashes.

You can also specify relative directories. For example, RecordingDir=tmp. The recording is temporarily stored in the tmp directory within the working directory of the broker.

If you do not add RecordingDir to the properties file, the recording is temporarily stored in the working directory of the broker.

Parameters for inbound connections

BindTo: Used to accept incoming connections on specific network interfaces.
For example:my\connection.BindTo=192.0.2.0
Default is 0.0.0.0.
RetryDelay: Defines the time in seconds between attempts to open the configured port for listening for incoming connections. Default is 45 seconds.
TLSCipherList: List of allowed ciphers. For more information about allowed ciphers, see Default configuration parameters.

Parameters for broker connections

BindTo: This parameter is optional and can be configured to allow the broker to establish the outgoing broker connection from a specific network interface. For example, if a firewall on the network is configured to allow only 1 of the broker 's interfaces through. Defines the IP address of the network interface through which the connections are made. For example: broker.1.BindTo=192.0.2.0 Default is 0.0.0.0.
KeepAlive: Defines the time in seconds between keepalive requests. This parameter is optional. Default is 45 seconds.
RetryDelay: Defines the time in seconds between attempts to establish or re-establish the control connection. This parameter is optional. Default is 45 seconds.
SourcePort: Defines the port that the outgoing broker connection is using. By default the broker uses an unused port.
TLSCipherList: List of allowed ciphers. For more information about allowed ciphers, see Default configuration parameters.

Parameter for passphrase encryption

DisableAutomaticPassphraseEncryption: Determines whether the automatic encryption of plain text passwords in the broker configuration file is disabled. The default value for the property is No. For more information about the use of this property, see Automatic passphrase encryption.