iTP Secure WebServer System Administrator's Guide (iTPWebSvr 5.1+)

ManualsBrandsHP ManualsServerHP NonStop G-Series

351

352

353

354

355

356

357

358

359

360

Configuration Directives

iTP Secure WebServer System Administrator’s Guide—522659-001

A-54

Region

-EnableAnonymousTicketing {GroupID GroupID ...}

The EnableAnonymousTicketing attribute turns on anonymous ticketing for

regions accessible to the specified groups. Anonymous ticketing enables you to

track requests without performing authentication or authorization. For more

information about anonymous ticketing, refer to Anonymous Ticketing on

page 11-1.

The department ID in a directive or command that enables anonymous ticketing can

be any string, as long as it does not include spaces.

If you include only one group, you may omit the braces.

Omitting the group IDs turns off anonymous ticketing for all regions in the specified

department.

The default is no anonymous ticketing.

To use -EnableAnonymousTicketing in an SI_Department Region

command, enter the following:

SI_Department Mydepartment -EnableAnonymousTicketing { 10 20

30 }

-PostExpirationExtension add-seconds

For requests using a POST method, the PostExpirationExtension attribute

adds a specified number of seconds (add-seconds) to the normal lifespan of the

Session Identifier.

The PostExpirationExtension directive allows clients sufficient time to

GET a form, fill it out, and POST it back to the iTP Secure WebServer. Without the

additional time specified by the PostExpirationExtension directive, the

session identifier might expire before the web client POSTs the form and cause the

content server to redirect the POST message to the ticketing agent for

reauthentication; as a result, the data from the POST message would be lost.

Setting PostExpirationExtension to a reasonable number of additional

seconds allows POSTs to work reliably. The default is 3 hours.

The following default applies:

SI_Default -PostExpirationExtension 10800

To use -PostExpirationExtension in an SI_Default Region command,

enter the following:

SI_Default -PostExpirationExtension 3600

-RequireIP

The RequireIP attribute enables the iTP Secure WebServer to omit the web client

IP address in the MAC for the Session Identifier, which is useful in the case where a

web client’s IP address changes from request to request. Omitting the IP address in

the Session Identifier or Digital Receipt stops those clients from being reticketed

with a new anonymous user ID for each request.