Policy management

In previous versions of Sametime there was a graphical user interface available to configure policies. In Sametime 12.0, configuring policies are done in the policies.user.xml file, which is located on the Sametime server.

About this task

You can use the policies.user.xml file to restrict or grant access to users depending upon their level of need. For example, the maximum size for a file being transferred helps manage traffic over the servers. However, you might have a group of users who have a business need to transfer larger files. You can set a new policy specific to those users that has a higher maximum.

You need operating system access to the Sametime server for this task.

The file is organized into templates:

Instant Messaging default (im.default.policy)
Instant Messaging Anonymous (im.anonymous.policy)

If you open the file using a text or XML editor, you will also notice a template that has been commented with <!- notation. This section is to be used as template to create new policies. When making changes to policies ensure you are in the correct policy template.

Note: Do not use the following special characters in the policy's name or in any one of the values of policy attributes:

Ampersand (&)
Apostrophe (')
Quotation mark (")
Greater than character (>)
Less than character (<)
backslash character (\)
Forward slash (/)
spaces ( )

Note: You will be making changes to an .XML file. To check the syntax after making changes to the server, you can preview the file using a browser. If there is a problem in the XML formatting it will be easier to identify. If the XML has incorrect syntax, it will result in policy service failure.

Policies are divided into attribute groups:

Table 1. **Table - 1**
Attribute group name	What is inside
imserver.policygroup.chat	Persistent Chat enableOffline Messages im.thirdPartyMeetingEnabled = Set to true to enable Sametime 11.6 meetings im.metingsEnabled = Set to true to enable Sametime 11.6 meetings im.2019.label = User must set this community as the default server community (IC) im.2011.label = Allow user to add multiple server communities (IC) im.2001.label = Allow user to add external users using Sametime gateway communities im.2002.label = Allow user to save chat transcripts (IC) im.2004.label = Automatically save chat transcripts (IC) im.2006.label = Maximum days to save automatically saved chat transcripts (IC) im.2014.label = Limit contact list size im.2015.label = Contacts im.2010.label = Allow mobile client im.2012.label = Sametime update site URL (IC) im.3000.label = Allow all Sametime Connect features to be used with integrated clients (IC)
imserver.policygroup.image	im.2008.label = Allow custom emoticons (IC) im.2009.label = Allow screen capture and images (IC) im.2020.label = Set maximum image size for custom emoticons, screen captures, and inline images (IC) im.2021.label = KB
imserver.policygroup.filetransfer	im.1.label = Allow user to transfer files through server (IC) im.2.label = Maximum individual file transfer size, in Kilobytes, for files sent through the server (IC) im.3.label = Use exclude file types transfer list, for files sent through the server (IC) im.4.label = Types to exclude from transfer. Type the three-letter extension of each file type, separated by a comma or semicolon (IC) im.2005.label = Allow client-to-client file transfer (IC) im.allowTransferringMutipleFilesAndFolders = allows users to transfer multiple files and folders in a chat im.allowTransferringFiletoNWayParticipants = allows users to transfer files to all participants in a n-way chat im.maxNumberUsersToReceiveSingleFileInOneFileTransferSession = set a maximum numbers of users in the n-way chat to receive files during a file transfer.
imserver.policygroup.plugin	im.2013.label = Allow user to install plug-ins (IC) im.2022.label = Sametime optional plug-in site URLs. Type the URLs separated by a comma or semicolon (IC)
imserver.policygroup.mobile	im.mobile.allowLocationReporting.label = Allow location reporting im.mobile.disableUntrustedSsl.label = Disable untrusted SSL im.mobile.disablePasswordSave.label = Disable password save im.mobile.AllowSendFiles - Allows the mobile to send files if file transfer policy is also enabled im.mobile.AllowReceiveFiles - Allows the mobile to receive files if file transfer policy is also enabled (means files received over chat will be stored in Files app for iOS and on the synonymous thing for Android. If you don't want files outside the app, turn this off and all we have to do is not advertise the capability and no one can send to you.) im.mobile.restrictClipboard - Clipboard will be cleared when you go to the background. im.mobile.allowShareChatImages - Means that images sent to a user in a chat can be shared outside the container. To photos, Files, other apps, etc. im.mobile.allowSendImages - Allows the mobile to send photos if im.2009 (Allow screen capture and images) policy is also enabled. im.mobile.mamPolicySignature - Enables an administrator to require that mobile devices running HCL Sametime be managed.

To enable or disable a feature, locate the feature’s current-value and change to either 0 for disabled, or 1 for enabled.

For example, to disable “User must set this community as the default server community”, locate the feature ‘s label (im.2019) then change the XML syntax from current-value=”0”

<p:policy-attribute id="im.2019" type="boolean" current-value="0" default-value="0" master-attribute-link="null" possible-value-labels="null" possible-values="null" label="im.2019.label" description="im.2019.desc" visible="true"/>

Change to current-value=”1”

<p:policy-attribute id="im.2019" type="boolean" current-value="1" default-value="0" master-attribute-link="null" possible-value-labels="null" possible-values="null" label="im.2019.label" description="im.2019.desc" visible="true"/>