Administrator Guide

ManualsBrandsDell ManualsAccess PlatformsW-ClearPass Virtual Appliances

641

642

643

644

645

646

647

648

649

650

Field Description

Access Token

Lifetime

(Optional) Specifies the default lifetime of an OAuth2 access token. Unless it is changed, the

default value is 8 hours. To change the value, enter a number in the first text field, and use the

drop-down list to indicate the unit of time. Options include:

l seconds

l minutes

l hours

l days

l weeks

The value for this parameter may also be configured separately for each API client (see "Creating

and Editing API Clients" on page 561).

Refresh

Token

Lifetime

Specifies the default lifetime of an OAuth2 refresh token. Unless it is changed, the default value is

14 days. To change the value, enter a number in the first text field, and use the drop-down list to

indicate the unit of time. Options include:

l seconds

l minutes

l hours

l days

l weeks

The value for this parameter may also be configured separately for each API client (see "Creating

and Editing API Clients" on page 561).

API Logging (Required) Specifies the logging level for API-related events. Options include:

l Disabled - do not log API-related events

l Standard (Recommended) - log basic information

l Extended - log additional information — (this option logs all API calls)

l Debug - log debug information

l Trace - log all debug information — The ‘Trace’ logging level exposes the following security

risks:

n Information disclosure: Full request/response traces are logged, including potentially

sensitive information such as access tokens, passwords, and/or shared secrets.

n Denial-of-service: Every API request generates a log message, including authentication and

authorization failures.

Security

Warning

Displays security risks warnings if you selected Trace - log all debug information in the API

Logging field.

Allowed

Origins

Specifies a list of hostnames that may be used for Cross-Origin Resource Sharing (CORS). Enter

each hostname on a separate line. The asterisk character may be used by itself to allow all

origins, or it can be used as a wildcard (*.example.com). To never allow cross-domain API

requests, leave this field blank.

Arbitrary Sort If selected, overrides default sort-field settings and allows any field to be specified as the sort

column through the API.

Users should be aware that large query results might cause a performance impact.

Save

Configuration

Commits your changes.

Table 289: API Framework Plugin Configuration

Configuring the DELL W-ClearPass Skin Plugin

A Web application’s skin determines its visual style—the colors, menus, and graphics. You can use either the

standard W-ClearPass skin plugin, the ClearPass Guest skin, a Galleria skin, a blank plugin if you are providing

Dell Networking W-ClearPass Guest 6.6 | User Guide Administration | 641