trc.properties

Definitions of the properties in the trc.properties file that is packaged with the IBM® BigFix® Remote Control Server.

DO NOT EDIT THE FOLLOWING LINE

rc.enabled=

THE FOLLOWING LINES CAN BE EDITED FOR YOUR ENVIRONMENT:

rc.heartbeat_timeout=
Modifiable Field rc.heartbeat_timeout
Field Description While an endpoint is active, it periodically reports back to the server. This value is the number of minutes between each report back to the server or heartbeat.
Possible Values User Defined
Value Definition
rc.create.assets.from.callhome=
Modifiable Field rc.create.assets.from.callhome
Field Description If target information sent from the target to the server is not already in the database, create these targets in the database
Possible Values true or false
Value Definition
true
target information is added to the database.
false
target information is not added to the database.
rc.create.assets.from.brokers=
Modifiable Field rc.create.assets.from.brokers
Field Description Use to allow an unregistered target to register with the server at the start of a remote control session that uses a broker. The target information is sent to the server when the target user enters the connection code.
Possible Values True or False
Value Definition
True
Unregistered targets are added to the database.
False
Unregistered targets are not added to the database.

DO NOT EDIT THE FOLLOWING LINES

rc.validation.relative.url=
rc.audit.relative.url=
rc.upload.url=

THE FOLLOWING LINES CAN BE EDITED FOR YOUR ENVIRONMENT:

rc.show.controller.splash=
Modifiable Field rc.show.controller.splash
Field Description Use this property to determine whether the controller splash screen is displayed before the remote control session starts.
Possible Values True or False
Value Definition
True
The controller splash screen is displayed before the remote control session starts. True is the default value.
False
The controller splash screen is not displayed during the initiation of a remote control session.
rc.recording.directory=
Modifiable Field rc.recording.directory
Field Description Directory that is used for storing session recordings on the Server
Possible Values User-defined: for example: rc_recordings. Can be specific or relative
Value Definition
unknown.recording.action=
Modifiable Field unknown.recording.action
Field Description Determines what action is returned to the target if a target requests to upload a recording for a session that is not known to the server.
Possible Values 0, 1, 2
Value Definition
0
The target can upload the recording.
1
The target must keep the recording locally in its file system.
2
The target must delete the recording.
rc.dialog.session.accept.directory=
Modifiable Field rc.dialog.session.accept.directory
Field Description Directory that is used for storing bitmap files that are uploaded when you configure the session acceptance window.
Possible Values User-defined: for example: /sad_config. Can be specific or relative
Value Definition

DO NOT EDIT THE FOLLOWING LINE:

schema=

Category Description: Email Settings

email.enabled=
Modifiable Field email.enabled
Field Description Enable the email function.
Possible Values True or False
Value Definition
True
email is enabled.
False
email is not enabled.
smtp.server= 
Modifiable Field smtp.server
Field Description The address of the SMTP server you are using for email.
Possible Values User-defined - for example: myserver.email.com
Value Definition
smtp.authentication=
Modifiable Field smtp.authentication
Field Description The SMTP server must authenticate the SMTP user ID and password.
Possible Values True or False
Value Definition
True
SMTP server must authenticate the user ID and password.
False
SMTP server does not authenticate the user ID and password.
smtp.userid=
Modifiable Field smtp.userid
Field Description The user ID for the SMTP server.
Possible Values User-defined string
Value Definition
smtp.password=
Modifiable Field smtp.password
Field Description The password for the SMTP server.
Possible Values User-defined
Value Definition
error.admin.contact=  
Modifiable Field error.admin.contact
Field Description Details or relevant message for contacting an administrator to report a problem.
Possible Values User-defined message. For example: Contact helpdesk on 123456-123-123
Value Definition
file.email.name = 
Modifiable Field file.email.name
Field Description Default file name that is used when a report is mailed out. For example, Selecting Email Report from the Options menu. The report is exported into a CSV file with this file name and attached to the email.
Possible Values User-defined - for example: report.csv.
Value Definition Must not be blank and must contain only characters that are valid for a file name.
file.email.mime.type = 
Modifiable Field file.email.mime.type
Field Description Represents the mime type for the file that is attached to an email when a report is mailed out.
Possible Values User-defined - for example: application/vnd.ms.excel.
Value Definition User-defined; default is application/vnd.ms.excel. Must be a mime-type that is compatible only with plain-text or comma-separated value (CSV) files.
file.email.encoding =
Modifiable Field file.email.encoding
Field Description Represents the encoding for the file that is attached to an email when a report is mailed out.
Possible Values UTF-8, UTF-16BE, UTF16LE
Value Definition Default value is UTF16LE (Windows™ standard for Excel)
file.email.type = 
Modifiable Field file.email.type
Field Description Represents the type for the file that is attached to an email when a report is mailed out.
Possible Values TSV, CSV
Value Definition User-defined. TSV (Tab Separated Value), CSV (comma-separated value).

Category Description: Email Templates

url= 
Modifiable Field url
Field Description The main URL users use to access the IBM BigFix Remote Control Server UI.
Possible Values User-defined - for example http://192.0.2.0/trc
Value Definition User-defined. URL and context root of application.
secure.url= 
Modifiable Field secure.url
Field Description Determines the base url that is used to redirect requests when secure communications are required.
Possible Values User-defined - for examplehttps://X.X.X.X/trc where X.X.X.X is the IP address of your IBM BigFix Remote Control Server.
Note: The url property must also be configured. Do not replace http with https in the url property because the ports for each might be different.
Value Definition User-defined. URL and context root of application when you use secure connections.
enforce.secure.web.access= 
Modifiable Field enforce.secure.web.access
Field Description An HTTP request that is not a target request. The upload, or validation request is redirected to the same URL but uses the value that is set in the secure.url parameter as a base.
Possible Values True or False
Value Definition
True
The http request is redirected to the secure url.
False
The http request is not redirected to the secure url.
Note: When you change the value of this property, you must restart the IBM BigFix Remote Control Server service for the new value to take effect.
enforce.secure.endpoint.callhome= 
Modifiable Field enforce.secure.endpoint.callhome
Field Description Determines the url that is used by targets when they send information to the IBM BigFix Remote Control Server.
Possible Values True or False
Value Definition
True
If an HTTP request is received from a target, the request is redirected to the secure url. The secure url is also returned in the response form the server. Forces targets to use the secure url when they contact the IBM BigFix Remote Control Server. When you enable this property and you configure a broker in your environment, you must set the ServerURL parameter in the broker properties file to HTTPS. Otherwise, the broker does not redirect to the secure url and the target cannot send information to the server.
False
Targets are not forced to use the secure url when they contact the IBM BigFix Remote Control Server. False is the default value.
Note: When you change the value of this property, you must restart the IBM BigFix Remote Control Server service for the new value to take effect.
enforce.secure.endpoint.upload= 
Modifiable Field enforce.secure.endpoint.upload
Field Description Determines whether the controller or target must use the secure url to upload the recordings and audit information to the server.
Possible Values True / False
Value Definition
True
If an HTTP upload or a validation request is received, the server redirects the request to an equivalent URL. The URL is built with the value that is defined in secure.url as a base. The server also uses the value of secure.url as a base to provide the upload and validation URLs to the controller and target when the session starts. When you enable this property and you configure a broker in your environment, you must set the ServerURL parameter in the broker properties file to HTTPS. Otherwise, the broker does not redirect to the secure url and the target cannot send information to the server.
False
If an HTTP upload or a validation request is received, the server does not redirect to the secure url.
Note: When you change the value of this property, you must restart the IBM BigFix Remote Control Server service in order for the new value to take effect.
enforce.secure.weblogon= 
Modifiable Field enforce.secure.weblogon
Field Description Forces the default logon from the server UI to use https. This property requires secure.url to be set with the full host name.
Possible Values True / False
Value Definition
True
Log on requests from the IBM BigFix Remote Control Server UI use HTTPS. HTTPS is not shown in the url, but the logon page with USERID/PASSWORD is posted by using HTTPS. The URL that is defined in the secure.url parameter is used. If secure.url is set incorrectly, the logon does not succeed. Enabling this parameter does not prevent a logon request that uses HTTP through another tool or page.
False
Log on by using HTTP or HTTPS. Whichever protocol that is used in the URL that is entered in the browser is used.
enforce.secure.alllogon= 
Modifiable Field enforce.secure.alllogon
Field Description Force any logon action to use HTTPS, deny any non-HTTPS logon. When you enable this property, you must set secure.url with the full host name.
Possible Values True / False
Value Definition
True
Any logon attempt that uses HTTP is rejected and redirected to the logon page.
False
Log on by using HTTP or HTTPS. Whichever protocol that is used in the URL that is entered in the browser is used.
account.lockout= 
Modifiable Field account.lockout
Field Description Lock a user account after a consecutive number failed logon attempts. Set to 0 to disable this function.
Possible Values user defined
Value Definition User-defined. integer.
account.lockout.timeout= 
Modifiable Field account.lockout.timeout
Field Description If user account is locked out due to consecutive failed logon attempts, re-enable the account after this time. The period can be MIN, HOUR, DAY, MONTH.
Note: This property is only valid when account.lockout is enabled.
Possible Values User-defined
Value Definition User-defined. MIN, HOUR, DAY, MONTH. For example, set to 5MIN means that the account is locked for 5 minutes. Set to 2DAY means that the account is locked for 2 days.
Note: If left blank, the account is locked until manually set.
account.lockout.allowlogonfrom= 
Modifiable Field account.lockout.allowlogonfrom
Field Description Use this property to allow users to log on from this host even if their account is locked out due to consecutive failed logon attempts. If your account is locked, you can log on to the IBM BigFix Remote Control Server from the computers whose IP address is listed. For example: 192.0.2.1;192.0.2.2;
Note: It is important to end each host name with a semi-colon.
Possible Values User-defined -
Value Definition User-defined. A list of IP addresses separated by a semi-colon. End the list with a semi-colon.
account.lockout.reset.on.emailpassword= 
Modifiable Field account.lockout.reset.on.emailpassword
Field Description Determines whether a locked account is reset when the user selects the forgotten password check box on the logon screen.
Possible Values True / False
Value Definition
True
The locked account is reset when the password reset email is received from the administrator.
False
The locked account is not reset when the forgotten password request is received.
Note: As this property uses the forgotten password feature, email must be enabled in the system.

DO NOT EDIT THIS LINE

ip.address= 
email.from= 
Modifiable Field email.from
Field Description The email address to which users respond when they receive email requests; in some cases, this email address might be the same as the administrators email address.
Possible Values User-defined - for example: trc@example.com
Value Definition Email address
email.admin= 
Modifiable Field email.admin
Field Description The email address of the administrator for reporting problems to.
Possible Values User-defined: for example, admin@example.com
Value Definition Email address

DO NOT EDIT THE FOLLOWING LINES

task.use.other.threads.queue.limit =
http =
audit.relative.url =
upload.relative.url=
addasset.relative.url= 
call.home.relative.url= 
oms.relative.url=
call.home.command.parameters=
match.on.assettag = 
match.on.computername.if.valid.serial.or.uuid.stored = 

THE FOLLOWING LINES CAN BE EDITED FOR YOUR ENVIRONMENT:

queue.processors =
Modifiable Field queue.processors
Field Description Number of processors (CPUs) in the system that is running the IBM BigFix Remote Control Server Used to determine the number of working threads that can be used by the IBM BigFix Remote Control Server program.
Possible Values User-defined
Value Definition User-defined integer

DO NOT EDIT THE FOLLOWING LINES

queue.max.length = 
serialised.queue.object=
row.sample =
character.width = 
max.column.character.width =
min.table.character.width = 
 

YOU CAN EDIT THE FOLLOWING FIELD:

use.scrollable.table
Modifiable Field use.scrollable.table
Field Description Determine whether you can scroll the results table.
Possible Values True or False.
Value Definition
True
you can scroll the table.
False
you cannot scroll the results table.

DO NOT EDIT THE FOLLOWING LINES

max.retries= 
default.query=
default.pagerows= 
query.authorised.queries= 
all.users.query= 
all.other.users.query= 
all.groups.query=
selected.user.query=
selected.users.query=
selected.asset.query= 
user.search.query= 
asset.search.query= 
selected.email.query=
scheduled.task.query= 
task.list.query= 
all.tasks=
report.list.query=
menu.links.query= 
menu.actions.query= 
menu.tasks.query= 
menu.static.links.query= 
menuscheduled.task.log.query= 
attachments.query= 
query.latest.unprocessed.revision= 
query.all.unprocessed.revisions=
query.asset.count=
query.processed.incorrectly=
query.selected.task= 
query.all.xml.revisions= 
query.users.assets= 
query.user.queries= 
query.asset.queries= 
query.unknown.pc.serial=
query.uploads.in.period.defined= 
query.average.upload.time= 
query.unprocessed.security.assets=
query.new.assets.in.period.defined= 
query.average.process.time=
query.processed.in.period.defined=
query.selected.user.custom.query= 
query.all.custom.query=
query.selected.users.groups=
query.unprocessable.pc.assets.count= 
query.menu.static.items=
search.limit.results = 
max.keys =

Category Description: Action Authority Settings

DO NOT EDIT THE FOLLOWING LINES
update.password.auth=
update.details.auth=
change.asset.owner.auth=
add.user.auth=
all.user.auth=
all.asset.auth=
all.custom.reports.auth=
query.builder.auth=
search.auth=
task.auth=
reprocess.auth=
group.auth=
view.group.auth=
delete.user.auth=
email.report.authority=
edit.printer.auth=
user.skill.auth=
add.ticket.auth=
edit.ticket.auth=
setup.ticket.auth=
edit.table.auth=
edit.probeset.auth=
edit.po.auth=
rc.auth=
asset.revisions =
asset.keep.baseline=

THE FOLLOWING LINE CAN BE EDITED FOR YOUR ENVIRONMENT:

delete.target.auth=  
Modifiable Field delete.target.auth
Field Description Determines what level of access is required to delete a target when you use the Delete Target action.
Possible Values U, S, A
Value Definition
U
User authority.
S
Super User authority.
A
Administrator authority. This value is the default value.
Note: If you change the value of this property, you must restart the server service for the new value to take effect.

browse.targets.auth=  
Modifiable Field browse.targets.auth
Field Description Determines which levels of user authority sees the Browse option that is displayed in the Targets menu.
Possible Values U, S, A
Value Definition
U
User authority. All user authorities see the Browse option in the Targets menu. This value is the default value.
S
Super User authority. Only Super Users and Admin users see the Browse option in the Targets menu.
A
Administrator authority. Only Admin users see the Browse option in the Targets menu.
Note: If you change the value of this property, you must restart the server service for the new value to take effect.

view.all.targets.auth=  
Modifiable Field view.all.targets.auth
Field Description Determines which levels of user authority see the All targets option that is displayed in the Targets menu.
Possible Values U, S, A
Value Definition
U
User authority. All user authorities see the All targets option in the Targets menu. This value is the default value.
S
Super User authority. Only Super Users and Admin users see the All targets option in the Targets menu.
A
Administrator authority. Only Admin users see the All targets option in the Targets menu.
Note:
  1. If you change the value of this property, you must restart the server service for the new value to take effect.
  2. If the home page of a user is set to the All targets report, their authority to view the report is determined by the value of view.all.targets.auth. If they do not have authority to view All targets, the Search targets page is displayed.
  3. If you set view.all.targets.auth to S or A, you must set target.search.minimum.nonwildcards to greater than 1. Otherwise, users with user authority can use the search targets page to display all of the targets.

search.session.history.auth=  
Modifiable Field search.session.history.auth
Field Description Determines which levels of user authority sees the Search option that is displayed in the Sessions menu.
Possible Values U, S, A
Value Definition
U
User authority. All user authorities see the Search option in the Sessions menu. This value is the default value.
S
Super User authority. Only Super Users and Admin users see the Search option in the Sessions menu.
A
Administrator authority. Only Admin users see the Search option in the Sessions menu.
Note: If you change the value of this property, you must restart the server service for the new value to take effect.

Category Description: Schedules

DO NOT EDIT THE FOLLOWING LINES

scheduled.upload= 
update.client.files=
scheduled.upload.interval=
scheduled.upload.queue.threshold=
scheduled.upload.queue.lookup.threshold= 
scheduled.update.demographics=
scheduled.demographics.check.interval=
get.application.files.relative.url=
changed.software.upload =
changed.hardware.upload = 
scheduled.launch.on.startup= 

YOU CAN EDIT THE FOLLOWING LINES

Category Description - LDAP synchronization task

scheduled.interval=  
Modifiable Field scheduled.interval
Field Description The frequency in numeric value that the server must check for scheduled tasks.
Possible Values User-Defined
Value Definition User-Defined. Positive Integer
Note: If you change the value of this property, you must restart the server service for the new value to take effect.
scheduled.interval.period= 
Modifiable Field scheduled.interval.period
Field Description The unit of time in which the server must check for scheduled tasks.
Possible Values minutes or hours or days
Value Definition Minutes or Hours or Days
scheduled.task.period= 
Modifiable Field scheduled.task.period
Field Description The interval units to be used when scheduling tasks.
Possible Values minutes or hours or days
Value Definition Minutes or Hours or Days

DO NOT EDIT THE FOLLOWING LINES

scheduler.use.queue=
task.process.xml.max.queue.length=
task.process.files.max.queue.length= 
task.process.filescan.max.queue.length=
task.process.software.security.length= 

YOU CAN EDIT THE FOLLOWING LINES

DBCleaner is a looping utility that is used to clean up older log files that are based on age of entries (in days). Frequency is in days. To disable cleaning, set the value to -1.

dbcleaner.launch.on.startup=
Modifiable Field dbcleaner.launch.on.startup
Field Description Start dbCleaner when the server application starts.
Possible Values 1 or 0
Value Definition 1 to start dbCleaner. 0, do not start dbCleaner.
dbcleaner.frequency=
Modifiable Field dbcleaner.frequency
Field Description Frequency the DBCleaner runs at in days
Possible Values set to -1 to disable cleaning
Value Definition User-Defined - number of days
dbcleaner.interval.period=
Modifiable Field dbcleaner.interval.period
Field Description Period the database logs are cleaned
Possible Values User-Defined. for example: mins, or hours, or days, or months
Value Definition User-Defined - number of days
server.log.max.age=
Modifiable Field server.log.max.age
Field Description Maximum age of entries in the server log file, before they are deleted.
Possible Values User-Defined
Value Definition User-Defined - number of days

DO NOT EDIT THE FOLLOWING LINE

tx.log.max.age= 

THE FOLLOWING LINES CAN BE EDITED FOR YOUR ENVIRONMENT:

task.log.max.age= 
Modifiable Field task.log.max.age
Field Description Maximum age of entries in the task log table before they are deleted.
Possible Values User-Defined
Value Definition User-Defined - number of days
transfers.history.max.age=
Modifiable Field transfers.history.max.age
Field Description Maximum age of entries in the transfer table before they are deleted.
Possible Values User-Defined
Value Definition User-Defined - number of days
user.access.max.age=
Modifiable Field user.access.max.age
Field Description Maximum age of entries in the access table before they are deleted.
Possible Values User-Defined
Value Definition User-Defined - number of days

DO NOT EDIT THE FOLLOWING LINES:

logon.disclaimer=

THE FOLLOWING LINES CAN BE EDITED FOR YOUR ENVIRONMENT:

Category Description: Password Settings

password.encrypt= 
Modifiable Field password.encrypt
Field Description Determines whether passwords are encrypted in the database.
Possible Values Yes or No
Value Definition
Yes
passwords are encrypted in the database.
No
passwords are not encrypted in the database.
password.reuse=
Modifiable Field password.reuse
Field Description Whether users can reuse passwords.
Possible Values Yes or No
Value Definition
Yes
users can reuse passwords.
No
users cannot reuse passwords.
expire.new.password=
Modifiable Field expire.new.password
Field Description Determines whether users are required to set their own password after they receive the computer-generated password.
Possible Values True or False
Value Definition
True
users must set their own password after they receive the computer-generated password.
False
users do not have to set their own password after they receive the computer-generated password.
password.timeout=
Modifiable Field password.timeout
Field Description Determines whether passwords expire.
Possible Values True or False
Value Definition
True
passwords expire.
False
passwords do not expire.
password.timeout.period=
Modifiable Field password.timeout.period
Field Description After how many days passwords expire.
Possible Values User-defined
Value Definition User-defined integer
password.period=
Modifiable Field password.period
Field Description Maximum number of days before a password can be reused.
Possible Values User-defined
Value Definition User-defined integer
password.check=
Modifiable Field password.check
Field Description Determines whether to enable password rule checking.
Possible Values True or False
Value Definition
True
passwords must follow certain rules.
False
passwords do not follow rules.
password.must.have.non.numeric=
Modifiable Field password.must.have.non.numeric
Field Description Determines whether passwords must contain non-numeric characters.
Possible Values True or False
Value Definition
True
passwords must contain non-numeric characters.
False
passwords do not need to contain non-numeric characters.
password.must.have.numeric=
Modifiable Field password.must.have.numeric
Field Description Determines whether passwords must contain numeric characters.
Possible Values True or False
Value Definition
True
passwords must contain numeric characters.
False
passwords do not have to contain numeric characters.
password.must.have.non.alphanumeric=
Modifiable Field password.must.have.non.alphanumeric
Field Description Whether passwords must contain non-alphanumeric characters.
Possible Values True or False
Value Definition
True
passwords must contain non-alphanumeric characters.
False
passwords do not have to contain non-alphanumeric characters.
password.min.length=
Modifiable Field password.min.length
Field Description Minimum length of a password.
Possible Values User-defined
Value Definition User-defined integer
password.max.length=
Modifiable Field password.min.length
Field Description Maximum length of a password.
Possible Values User-defined
Value Definition User-defined integer
password.max.matching.sequential.chars=
Modifiable Field password.max.matching.sequential.chars
Field Description Maximum number of sequential password characters that can match.
Possible Values User-defined
Value Definition User-defined integer
password.max.previous.chars=
Modifiable Field password.max.previous.chars
Field Description Maximum number of sequential password characters that can be reused in a new password.
Possible Values User-defined
Value Definition User-defined integer
password.iterationcount =  
Modifiable field password.iterationcount
Field Description Use to define the number of times that a password is hashed before it is stored in the database.
Possible Values User defined.
Value Definition Default is 5000. There is no maximum value. The higher the iteration count, the longer it takes for someone to try to break the password. However, the larger the iteration count, the slower it is to log on to the server or to change your password. A higher iteration count slows the system down. Therefore you must set it to a value that is acceptable to your environment and maintains acceptable performance.

DO NOT EDIT THE FOLLOWING LINE

table.column.internationalisation = 

THE FOLLOWING LINES CAN BE EDITED FOR YOUR ENVIRONMENT:

csv.export.use.byte.order.mark=
Modifiable Field csv.export.use.byte.order.mark
Field Description Determines whether a Unicode UTF-8 Byte Order Mark (BOM) is included at the start of the file when you export a CSV file.
Possible Values True or False
Value Definition
True
Include a Unicode UTF-8 Byte Order Mark (BOM).
False
Do not include a Unicode UTF-8 Byte Order Mark (BOM).
tsv.export.use.byte.order.mark=
Modifiable Field tsv.export.use.byte.order.mark
Field Description Determines whether a Unicode UTF-8 Byte Order Mark (BOM) is included at the start of the file when you export a TSV file.
Possible Values True or False
Value Definition
True
Include a Unicode UTF-8 Byte Order Mark (BOM).
False
Do not include a Unicode UTF-8 Byte Order Mark (BOM).
edit.properties.show.file.comments = 
Modifiable Field edit.properties.show.file.comments
Field Description Determines whether you see the comments in the properties file when you edit the properties in the server UI.
Possible Values 1 / 0
Value Definition
1
The comments are displayed when you edit the properties.
0
The comments are not displayed when you edit the properties.
edit.properties.show.translated.comments= 
Modifiable Field edit.properties.show.translated.comments
Field Description Determines whether you see the available globalized comments in the properties file when you edit the properties in the server UI.
Possible Values 1 / 0
Value Definition
1
The comments are displayed when you edit the properties.
0
The comments are not displayed when you edit the properties.
date.time.format=
Modifiable Field date.time.format
Field Description Defines the way dates and times are input into any date/time fields
Possible Values User-defined
Value Definition User-defined for example EEEE, dd MMMM yyyy, HH:mm:ss
date.only.format = 
Modifiable Field date.only.format
Field Description Defines the way dates are input into any date only fields
Possible Values User-defined
Value Definition User-defined for example EEEE, dd MMMM yyyy
time.only.format = 
Modifiable Field time.only.format
Field Description Defines the way dates are input into any date only fields
Possible Values User-defined
Value Definition User-defined for example: HH:mm:ss
invalid.macs =
Modifiable Field invalid.macs
Field Description List of target Mac addresses that are unacceptable to send to the server in the target information.
Possible Values User Defined for example - 000000000001
Value Definition
invalid.assettags =
Modifiable Field invalid.assettags
Field Description List of target assettags that are unacceptable to send to the server in the target information.
Possible Values User Defined for example, unknown
Value Definition
invalid.net.addresses =
Modifiable Field invalid.net.addresses
Field Description List of target network addresses that are unacceptable to send to the server in the target information.
Possible Values User Defined for example -0.0.0.0,127.0.0.0/8
Value Definition
report.timeout.frequency =
Modifiable Field report.timeout.frequency
Field Description When a report is generated its output is cached, so that it can be reloaded without the application going back to the database for the data. The property report.timeout.frequency defines the time value that the report output is cached for.
Possible Values User Defined
Value Definition
report.manager.frequency =
Modifiable Field report.manager.frequency
Field Description This property defines the time value for how often the Report manager loops and re loads the report data from the database
Possible Values User Defined
Value Definition
report.manager.period =
Modifiable Field report.manager.period
Field Description Defines the time period that is used for report.timeout.frequency and report.timeout.frequency.
Possible Values User Defined. for example seconds, minutes, hours. Default is minutes
Value Definition
allow.target.group.override =
Modifiable Field allow.target.group.override
Field Description Determines the group that a target is made a member of during a silent target installation when the GROUP_LABEL parameter is used.
Possible Values True or False
Value Definition
True
The target is assigned to the target group that the GROUP_LABEL parameter defines.
False
The target is assigned to the default target group that is defined for the default.group.name property.
default.group.name =
Modifiable Field default.group.name
Field Description Defines the name that is given to the default group of users
Possible Values User Defined. for example DefaultGroup
Value Definition

Category Description: Default Non-Binary Policies values

default.rc_def_inactivity =
Modifiable Field default.rc_def_inactivity
Field Description Number of seconds to wait before the remote control session connection stops automatically if there is no session activity.
Possible Values User Defined - seconds
Value Definition
  • 0 - disables the timer and the session does not time out.
  • less than 60 - session times out after 60 seconds.
  • greater than 60 - session times out when the value is reached.
default.rc_def_grace_time =
Modifiable Field default.rc_def_grace_time
Field Description Sets the number of seconds to wait for the target user to respond before a session starts or times out, used with Enable user acceptance for incoming connections.
Possible Values User-defined - 0 - 60 seconds
Value Definition If set to 0, the session starts without displaying the user acceptance window on the target. Default is 5
default.rc_def_timeout_op =
Modifiable Field default.rc_def_timeout_op
Field Description

Determines what action is taken if the user acceptance window timeout lapses. That is, the target user does not click accept or refuse within the number of seconds defined for Acceptance Grace time

Possible Values ABORT or PROCEED
Value Definition
Abort
Session is not started. Default is Abort.
Proceed
Session is started.

DO NOT EDIT THE FOLLOWING LINES

default.rc_def_local_audit
default.rc_def_pre_script = 
default.rc_def_post_script=

YOU CAN EDIT THE FOLLOWING LINES

default.rc_def_script_op =
Modifiable Field default.rc_def_script_op
Field Description Determines what action is taken if the prescript execution fails. A positive value or 0 is considered as a successful run of the pre-session script. A negative value, script not found, or not finished running within 3 minutes is considered a failure.
Possible Values ABORT or PROCEED
Value Definition
Abort
If the prescript run is a fail, the session does not start.
Proceed
If the prescript run is a fail, the session continues.
default.rc_def_insession_ft =
Modifiable Field default.rc_def_insession_ft
Field Description Controls the transfer of files during an Active session. Its value determines the availability of the Send file or Pull file options in the File Transfer menu within the controller window.
Possible Values NONE, BOTH, SEND, PULL
Value Definition
Set to NONE
The Send file and Pull file options are not available for selection. No file transfers can be initiated.
Set to BOTH
The Send file and Pull file options are available for selection. Files can be transferred to the target and transferred from the target. BOTH is the default value.
Set to PULL
Only the Pull file option is available for selection. Files can be transferred only from the target.
Set to SEND
Only the Send file option is available for selection. Files can be transferred only to the target.

DO NOT EDIT THE FOLLOWING LINES

 
default.rc_def_ft_actions =
default.rc_def_allowed_times
new.password.template
access.request.request.template
access.request.request.anon.template
access.request.reject.template
access.request.reject.anon.template
access.request.grant.template
access.request.grant.anon.template

YOU CAN EDIT THE FOLLOWING LINES

trc.feature.remote.install =  
Modifiable Field trc.feature.remote.install
Field Description Determines the availability of the Remote Install function.
Possible Values True or False
Value Definition
True
The Remote Install function is available in the Admin menu.
False
The Remote Install function is not available in the Admin menu.
Note: If you set this property back to true, after it is set to false you must restart the server service.
trc.feature.denied.program.execution.list =  
Modifiable Field trc.feature.denied.program.execution.list
Field Description Determines the availability of the Denied Program Execution policy when you create groups or permissions links.
Possible Values True / False
Value Definition
True
The Denied program execution list policy is displayed on the Edit group screen and the Manage Permissions screen.
False
The Denied program execution list policy is not displayed on the Edit group screen and the Manage Permissions screen.
Note: This feature works only on the following operating systems
  • Windows XP (32-bit editions only)
  • Windows Server 2003 (32-bit editions only)
Note: If you set this property back to true, after it is set to false, you must restart the server service.
trc.ticket.allow.access =  
Modifiable Field trc.ticket.allow.access
Field Description Determines the availability of the Request Access function.
Possible Values 1 or 0
Value Definition
1
The Request Access option is displayed on the start session screen. This option allows the controller user to temporarily access a target that they do not have permission to access.
0
The Request Access option is not displayed on the start session screen and the Request Access menu item is disabled.
trc.ticket.allow.allaccess =  
Modifiable Field trc.ticket.allow.allaccess
Field Description Determines the availability of the Request Access function when a user who is not registered in IBM BigFix Remote Control tries to access by using the anonymous URL. For more information about the anonymous URL and how to request access to targets when you are not a registered user in the IBM BigFix Remote Control Server, see the IBM BigFix Remote Control Controller User's Guide .
Possible Values 1 or 0
Value Definition
1
The Request Access to target screen is displayed when the user types in the anonymous URL.

http://servername/trc/requestAccessAnon.do

where servername is the address of your IBM BigFix Remote Control Server

0
The logon screen is displayed when the user types in the anonymous URL.
trc.ticket.admin =  
Modifiable Field trc.ticket.admin
Field Description Defines the user group of administrators who receive an email when an access request is submitted.
Possible Values User defined, for example: Adminemail.
Note:
  1. The group name must be a valid user group that is already defined in the server.
  2. If this field is left blank, the email address that is set for the property email.admin receives an email when an access request is submitted.
Value Definition The group name must be already defined in the database.
trc.ticket.groupprefix =  
Modifiable Field trc.ticket.groupprefix
Field Description Defines the prefix that is assigned to the name of the temporary user and target groups that are created when an access request is granted.
Possible Values User-defined for example: t$t
Value Definition The temporary groups names are in the format

P_R_G

where
  • P = trc.ticket.groupprefix property
  • R = the request key value for the access request
  • G = the group type U for user group, T for target group.
for example : t$t_5_U

trc.ticket.priority =    
Modifiable Field trc.ticket.priority
Field Description Defines the default priority level for access request permissions.
Possible Values 0, 1, or 5
Value Definition The priority value that is used when you set permissions for an access request. The value overrides any other permission values.

For example: 5 is the highest priority. 5 overrides 1 and 1 overrides 0.

trc.default.request.priority =  
Modifiable Field trc.default.request.priority
Field Description Defines the priority value that is displayed first in the priority list when you set the permissions for an access request.
Possible Values 0, 1, 5
Value Definition
0
0 is displayed first in the list.
1
1 is displayed first in the list.
5
5 is displayed first in the list.

DO NOT EDIT THE FOLLOWING LINES

 
trc.ticket.temp.usergrpupdesc
trc.ticket.temp.targetgrpupdesc

THE FOLLOWING LINES CAN BE EDITED FOR YOUR ENVIRONMENT:

task.logdistribution.enabled =  
Modifiable Field task.logdistribution.enabled
Field Description Determines whether the logs that contain session information are written to the IBM BigFix Remote Control Server.
Possible Values True or False
Value Definition
True
The logs are written to the server to the location defined by task.logdistribution.path.
False
The logs are not written to the server.
task.logdistribution.path =  
Modifiable Field task.logdistribution.path
Field Description Determines the location that the log file that contains session information is written to on the server.
Possible Values User defined. for example c:\logtask\logs
Value Definition

DO NOT EDIT THE FOLLOWING LINE

 
task.logdistribution.file

YOU CAN EDIT THE FOLLOWING LINES

registry.title.X =  
Modifiable Field registry.title.X
Field Description Defines the name of the menu item that is displayed in the registry keys menu. Use the menu to view the value for the specific registry key that is defined by registry.key.X
Possible Values User defined. for example Services
Value Definition X = 0 - 9.
registry.key.X =  
Modifiable Field registry.key.X
Field Description Defines the path to a specific registry key that you can use to view its value on the target.
Possible Values User defined. for example HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services
Value Definition X = 0 - 9.
nat.ip.support =  
Modifiable Field nat.ip.support
Field Description Used to define the list of IP addresses that are used by the server when a connection is made to a target when NAT addresses are present.
Possible Values 0, 1, 2, 3, 4
Value Definition
0
IP=heartbeatlist.

Server uses the heartbeat list of IP addresses to make a connection with the target.

1
IP= heartbeatlist; source

Server uses the heartbeatlist list of IP addresses then the source IP address to make a connection with the target.

2
IP = source;heartbeatlist

Server uses the source IP address then the heartbeatlist of IP addresses to make a connection with the target.

3
IP = heartbeat;source

Server checks the IP addresses that are listed in the nat.exclude.list property to see whether the source IP is there. If it is not, the server uses the heartbeatlist of IP addresses and then source IP address to make a connection with the target.

4
IP = source;heartbeat

Server checks the IP addresses listed in the nat.exclude.list property to see whether the source IP is there. If it is not, the server uses the source IP and then the heartbeatlist of IP addresses to make a connection with the target.

nat.exclude.list =  
Modifiable Field nat.exclude.list
Field Description Defines a list of NAT addresses that are ignored by the server.
Possible Values User defined.
Value Definition
match.allow.data.changes =  
Modifiable Field match.allow.data.changes
Field Description Is used to find a match for a target in the database if a perfect match cannot be found. For more information about how targets are registered, see Ensure targets are registered correctly.
Possible Values True or False
Value Definition
True
This value is the default value. When set to true, a best match is considered if all but 1 of the 4 perfect match criteria match an already registered target.
False
If the perfect match process is enabled and no match is found for all 4 of the target criteria, the best match option is not considered. Depending on the value of match.change.notifications, if no match is found then a new target entry is created in the database.
match.computername.only =  
Modifiable Field match.computername.only
Field Description Determines whether a targets computer name is used to see whether it is already registered with the IBM BigFix Remote Control Server. When a target contacts the server, its computer name is compared to the computer names of the targets that are already registered with the server. If a match is found, the details of the matched target are updated. If no match is found, a new target entry is created. For more information about how targets are registered, see Ensure targets are registered correctly.
Possible Values True or False
Value Definition
True
When a target contacts the server, the targets computer name is checked against the computer names of already registered targets. If a match is found, the details of the matched target are updated with the details of the target that is contacting the server. If no match is found, a new target entry is created.
False
When a target contacts the server, the targets computer name is not used to see whether the target is already registered with the server.
match.guid.only =  
Modifiable Field match.guid.only
Field Description Determines whether a targets guid is used to see whether it is already registered with the IBM BigFix Remote Control Server. When a target contacts the server, its guid is compared to the guid values of the targets that are already registered with the server. If a match is found, the details of the matched target are updated. If no match is found, a new target entry is created. For more information about how targets are registered, see Ensure targets are registered correctly.
Possible Values True or False
Value Definition
True
When a target contacts the server, the targets guid is checked against the guid values of already registered targets. If a match is found, the details of the matched target are updated with the details of the target that is contacting the server. If no match is found, a new target entry is created.
False
When a target contacts the server, the targets guid is not used to see whether the target is already registered with the server.
match.change.notification =  
Modifiable Field match.change.notification
Field Description Use this property to force a target to save its configuration details locally. If any of the target details change, it can send the old details and its current details to the server. The details can be used to try to find a match in the database. For more information about how targets are registered, see Ensure targets are registered correctly.
Possible Values True or False
Value Definition
True
This value is the default value. The target saves its details locally to a file called tgt_info.proprties. When the target contacts the server, it sends its old details and its new details. The old details are used to try to find a perfect match for the target in the database.
False
The old target details are not sent to the server and the new changed details are used to try to find a match. However if only one of the 4 criteria changes and the match.allow.data.changes property is set to true, then a best match is looked for.
rc.tmr.at.registration =   
Modifiable Field rc.tmr.at.registration
Field Description Determines whether a target is assigned to target groups by using rules the first time it registers with the IBM BigFix Remote Control Server
Possible Values True or False
Value Definition
True
When a target contacts the server for the first time, its computer name and IP address is compared to the computer names and IP addresses that are defined in the target membership rules. If a match is found, the target is assigned to the target groups that are defined in the matching rules.
False
When a target contacts the server for the first time, the targets computer name and IP address are not checked against any defined rules.
rc.tmr.at.every.callhome =  
Modifiable Field rc.tmr.at.every.callhome
Field Description Determines whether a target is assigned to target groups by using rules every time it contacts the IBM BigFix Remote Control Server
Possible Values True or False
Value Definition
True
Every time that a target contacts the server its computer name and IP address are compared to the computer names and IP addresses that are defined in the target membership rules. If a match is found, the target is assigned to the target groups that are defined in the matching rules. Therefore, the targets group membership is recalculated every time that it contacts the server.
False
Every time that a target contacts the server its computer name and IP address are not checked against any defined rules.
rc.tmr.at.triggered.callhomes =  
Modifiable Field rc.tmr.at.triggered.callhomes
Field Description Determines whether a target is assigned to target groups by using rules any time it contacts the IBM BigFix Remote Control Server because of a change to its configuration or when it comes online.
Possible Values True or False
Value Definition
True
When a target contacts the server because of a configuration change or when it comes online, its computer name and IP address are compared to the computer names and IP addresses that are defined in the target membership rules. If a match is found, the target is assigned to the target groups that are defined in the matching rules.
False
Any time a target contacts the server because of a configuration change or when it comes online, its computer name and IP address is not checked against any defined rules.
rc.tmr.at.rules.change =  
Modifiable Field rc.tmr.at.rules.change
Field Description When a rule is added, edited, or deleted. Determines whether the target group membership is altered for targets that were assigned to target groups by using rules.
Possible Values True or False
Value Definition
True
Applies to targets whose group membership was assigned by using rules. Their group membership is recalculated whenever a rule is added, edited, or deleted.
False
Applies to targets whose group membership was assigned by using rules. Their group membership is not recalculated whenever a rule is added, edited, or deleted.

DO NOT EDIT THE FOLLOWING LINES

 
hb.timeout.lookup.mode
hb.timeout.att.defn

THE FOLLOWING LINE CAN BE EDITED FOR YOUR ENVIRONMENT:

oracle.increment.keys.off =  
Modifiable Field oracle.increment.keys.off
Field Description Used as a workaround for a driver bug in the Oracle JDBC versions 5 & 6 drivers that are included with Oracle 11g
Possible Values 1 or 0
Value Definition
1
Set to 1 if you are using the Oracle JDBC versions 5 & 6 drivers.
0
Set to 0 if you are using JDBC 4 drivers (Oracle 10i) or if future versions of the JDBC driver address the get autogenerated keys bug.

default.homepage.method=  
Modifiable Field default.homepage.method
Field Description Used to determine whether the default home page is a report, or the search targets page. This property is useful if you have numerous targets in the IBM BigFix Remote Control database. The default home page that is set by the server is the All targets report. The report can take some time to load if you have numerous targets. Then you must scroll through the report to find the relevant target. If you set the search page as the home page, you can search for specific targets as soon as you log on.
Possible Values report or search
Value Definition
report
The default home page is set to the report that is defined by the query in the default.query property. By default it is the All targets report.
search
The default home page is set to the search targets page.
Note: This property is overridden if a home page is already defined. For example,
  • The user defines their own home page.
  • A home page is defined for the user groups that the user belongs to.
For more information about setting a home page, see Manage the home page for a user or group.

workaround.rdp.console.w2k3 =  
Modifiable Field workaround.rdp.console.w2k3
Field Description Used as a workaround for a Windows 2003 limitation. A remote control session cannot capture the display if a remote desktop session has taken place or is taking place on the target.
Possible Values 0, 1 or 2
Value Definition When a Remote Desktop user uses the /admin or /console option to start a Remote Desktop session with a Windows Server 2003 system and an IBM BigFix Remote Control user starts a remote control session before, during or after the Remote Desktop session, remote control is unable to capture the display. The result is that a gray screen is displayed in the controller. This issue is a limitation in Windows Server 2003, therefore this property provides a workaround that will reset the Windows session either after each Remote Desktop session ends, or before an IBM BigFix Remote Control session starts, depending on the value selected.
0
The workaround is disabled. This value is the default value.
1
Reset the session automatically when a remote control session is started.
Note: The Windows sessions take a couple of minutes to initialize and the controller sees a blank desktop until the initialization is complete. A message is displayed to inform the controller user that the session is being reset and it might take a few minutes.
2
Reset the session automatically when the Remote Desktop user logs out.
Note:
  1. The value set for this property applies to all targets that are registered with the server. You can set an attribute for a target group to limit the action to selected targets. For more information about the attribute, see Creating target groups. If the server property has a different value to the target group attribute, the target group value takes precedence for those targets who are members of the specific target group.
  2. If a Remote Desktop session (admin or console) is in progress when the controller attempts to connect to a target, a message is displayed to the controller. The message provides details of the Remote Desktop user and the IP address and computer name that the session is running from.

target.search.minimum.nonwildcards =  
Modifiable Field target.search.minimum.nonwildcards
Field Description Sets the minimum number of non-wildcard characters that are allowed to be entered when you search for a target.
Possible Values User-defined integer, default is 0.
Value Definition Determines the minimum non-wildcard characters that must be entered in the search targets field on the search targets page. For example set to 2 means that at least 2 non-wildcard characters must be entered. For example, se or te. If you enter less than the minimum characters, the following error is displayed on the screen - The search string must contain at least X non-wildcard characters. X is the value set in the property.
Note: If you set view.all.targets.auth to S or A, you must set target.search.minimum.nonwildcards to greater than 1. The reason is to prevent users who have user authority from using the search targets page to display all targets.

target.search.maximum.wildcards =  
Modifiable Field target.search.maximum.wildcards
Field Description Sets the maximum number of wildcard characters that are allowed to be entered when you search for a target. The wildcard characters that are allowed are *, %, * and _.
Possible Values User-defined integer, default is 0.
Value Definition The value set determines the maximum number of wildcard characters that you can enter in the search targets field, on the search targets page. For example, set to 1 means that only 1 wildcard characters can be entered. For example, se* or te*. If you enter more than the maximum characters the following error is displayed on the screen - The number of wildcards in the search string cannot exceed X . X is the value set in the property.

To reduce the volume of unnecessary heartbeats the following properties can be configured.

heartbeat.retry =  
Modifiable Field heartbeat.retry
Field Description If a target cannot contact the IBM BigFix Remote Control Server, use this property to define the number of minutes that the target waits before trying to contact it again.
Possible Values User-defined: minutes
Value Definition Default is 10.

heartbeat.delay=  
Modifiable Field heartbeat.delay
Field Description The maximum delay in minutes that a target waits between sending heartbeats to the IBM BigFix Remote Control Server.
Possible Values User-defined: minutes
Value Definition Default is 20 minutes. Prevent multiple heartbeats in quick succession by delaying the actual heartbeat when a heartbeat is triggered.

heartbeat.on.wake =  
Modifiable Field heartbeat.on.wake
Field Description Trigger a heartbeat when the target system wakes from standby or hibernation.
Possible Values 1 or 0
Value Definition
1
Trigger a heartbeat when the target system wakes from standby or hibernation.
0
Do not trigger a heartbeat when the target system wakes from standby or hibernation. This value is the default value.

heartbeat.on.userchange =  
Modifiable Field heartbeat.on.userchange
Field Description Trigger a heartbeat when a user logs on or off
Possible Values 1 or 0
Value Definition
1
Trigger a heartbeat when a user logs on or off. This value is the default value.
0
Do not trigger a heartbeat when a user logs on or off.

heartbeat.on.change =  
Modifiable Field heartbeat.on.change
Field Description Trigger a heartbeat when any of the values included in a heartbeat change.
Possible Values 1 or 0
Value Definition
1
Trigger a heartbeat when any of the values included in a heartbeat change. This value is the default value.
0
Do not trigger a heartbeat when any of the values included in a heartbeat change. This value is the default value.

heartbeat.on.stop =  
Modifiable Field heartbeat.on.stop
Field Description Trigger a heartbeat when the target is stopped or the system is shutting down
Possible Values 1 or 0
Value Definition
1
Trigger a heartbeat when the target is stopped or the system is shutting down.
0
Do not trigger a heartbeat when the target is stopped or the system is shutting down. This value is the default value.
Note: HeartBeatOnStop set to 1 is not recommended unless HeartBeatDelay is set to 0. Otherwise, remote control sessions cannot be started while the heartbeat is being delayed.

broker.code.length =  
Modifiable Field broker.code.length
Field Description Determines the number of characters that are required to be entered for the connection code. Enter the connection code when you start a remote control session through an Internet Connection Broker.
Possible Values User-defined integer.
Value Definition Default is 7. There is no limit to the number of characters that can be set. However, you must use your discretion when you set the value.

broker.code.timeout =  
Modifiable Field broker.code.timeout
Field Description Determines the number of seconds the connection code timer counts down from, before a new code is needed. The timer is displayed on the controller when you start a remote control session by using a broker.
Possible Values User defined.
Value Definition Default is 900.

broker.trusted.certs.required =  
Modifiable Field broker.trusted.certs.required
Field Description Determines whether strict certificate validation is enabled.
Possible Values true or false.
Value Definition
true
Strict certificate validation is enabled. This value is the default value.
false
Strict certificate validation is disabled.

rc.recording.filename.format =  
Modifiable Field rc.recording.filename.format
Field Description Specifies the file name format that is used in the server to store the recordings
Possible Values User defined. Some formatting variables can be added to the file name to customize it
Value Definition For example, trcrecording_%S_%D_%T.trc

where %S is placeholder for the session id of the recording

%D is placeholder for the date of the recording

%T is placeholder for the time stamp of the recording

%H is placeholder for the host name of the target