9.6 Configuring HTTP Server Object

An eDirectory installation creates an HTTP server object. The default configuration for HTTP Services is located in the directory on this object. However, you can modify the default configuration by using NetIQ iManager. The HTTP server object represents server-specific configuration data.

The following are the attributes on the HTTP server object:

  • httpDefaultTLSPort: Indicates the secure port at which HTTP the server listens.

  • httpDefaultClearPort: Indicates the clear text port at which HTTP the server listens.

  • httpAuthRequiresTLS: Indicates whether the request coming through the clear text port need to be redirected to a secure port.

  • httpTraceLevel: Indicates the debug level of HTTP server in DSTrace.

  • httpKeyMaterialObject: Holds the DN of the certificate object which the HTTP server needs to use when handling the secure connection.

  • httpSessionTimeout: Indicates the timeout of the HTTP sessions. The default value is 900 seconds.

  • httpKeepAliveRequestTimeout: Indicates the keep alive timeout of each HTTP request. The default value is 15 seconds.

  • httpRequestTimeout: Indicates the timeout of each HTTP request. The default value is 300 seconds.

  • httpIOBufferSize: Indicates the input and output buffer size of the HTTP server. The default value is 8192 bytes.

  • httpThreadsPerCPU: Indicates the HTTP threads that has to be spawned per CPU. The default value is 2 threads.

  • httpHostServerDN: Holds the DN of the NCP server object to which it is associated with.

  • httpBindRestrictions: Used to set the cipher encryption level. The four values that can be used to restrict the cipher usage are:

    • 0 - accept HIGH, MEDIUM, LOW and EXPORT ciphers

    • 1 - accept HIGH, MEDIUM, and LOW ciphers only

    • 2 - accept HIGH and MEDIUM ciphers only

    • 3 - accept HIGH ciphers only

    The default value is 2.