You can modify the web.xml file to perform the following tasks:
Configure the encryption method for a SAML assertion. See Configuring the Encryption Method for the SAML Assertion.
Configure SAML 2.0 to sign messages. See Access Manager Services That Use the Signing Certificate.
Manage Administration Console session timeout. See Managing Administration Console Session Timeout.
Configure the Logout Disconnect Interval. See Configuring the Logout Disconnect Interval.
Disable user profile objects. See Disabling User Profile Objects
in the NetIQ Access Manager 4.5 Best Practices Guide.
Configure a specific IP address for proxied requests. See Configuring a Specific IP Address for Proxied Requests
in the NetIQ Access Manager 4.5 Best Practices Guide.
Disable phishing. See Disabling Phishing
in the NetIQ Access Manager 4.5 Security Guide .