Skip to main content
Version: 3.8.x.x LTS

Properties

nevisAdmin features instance properties for further customizing. These properties are set by the /var/opt/nevisadmin/default/conf/nevisadmin.properties file. Changes to the file require a restart of the nevisAdmin instance to be applied.

note

nevisadmin.properties is not patched when upgrading nevisAdmin to a newer version. Thus, check the release notes if changes are required or recommended.

For a description of supported properties, see the table below:

Property nameDefaultDescription
ch.nevis.nevisadmin.agent.rundir/var/opt/nevisagent/default/runPath of the pre/post installation scripts (where a script file is copied to and executed on the remote machine).
ch.nevis.nevisadmin.auditservice.auth.classch.nevis.esauth.util.audit.JcanChannelnevisAuth AuditService implementation.
ch.nevis.nevisadmin.ca.signeralgSHA1 with RSASigner algorithm used by internal nevisAdmin CA
ch.nevis.nevisadmin.check.repository.enablefalseChecks for corrupted files in the nevisAdmin repository. This check is only required on systems with IO issues.
ch.nevis.nevisadmin.monitor.null-byte-check.timer*:*/15A simplified cron expression that sets the interval of the job enabled by the property ch.nevis.nevisadmin.check.repository.enable. The default value checks every15 minutes.
ch.nevis.nevisadmin.com.proxy.resourcemanager.retrytimeout10Defines the nevisProxy connector settings (set by default for the ResourceManager.RetryTimeout parameter).
ch.nevis.nevisadmin.commit.esauth4XmlConfigValidator.disablefalseDisables the esauth4.xml config validator (the default is "false").
ch.nevis.nevisadmin.commit.navajoXmlConfigValidator.disablefalseDisables the navajo.xml config validator (the default is "false").
ch.nevis.nevisadmin.commit.webXmlConfigValidator.disablefalseDisables the web.xml config validator (the default is "false").
ch.nevis.nevisadmin.config.enforce.httpd_lib_version1Do not replace static Apache library strings by the nevisProxy ${HTTPD_LIB_VERSION} variable.
ch.nevis.nevisadmin.config.import.merge.matching.objectids1Uncomment to switch back to legacy behavior for environment imports (prior to version 3.6.4.0): "Do not merge if the ID of the destination object is the same as the one of the source object". This can happen if you re-import an environment to the environment you created the .exp file from.
ch.nevis.nevisadmin.config.proxy.service.unsecure.defaultallowSet the default for "Unsecure connection" setting.
ch.nevis.nevisadmin.config.proxy.arch32Sets the proxy architecture (64 or 32 bit) used before the real architecture has been discovered.
ch.nevis.nevisadmin.config.proxy.cookieNameNavajoCookie settings.
ch.nevis.nevisadmin.config.proxy.useApache22.preset0Presets the Use Apache 2.2 (downgrade) checkbox.
ch.nevis.nevisadmin.config.proxy.variablesfile.enable0Creates the variables.conf file within the nevisProxy instance's conf/ directory.
ch.nevis.nevisadmin.control.command.timeout300000Defines the timeout for standard command execution, e.g. instance restart.
ch.nevis.nevisadmin.deploy.deletefiles1Enables the deletion of files that are no longer used (but deployed by a previous revision).
ch.nevis.nevisadmin.deploy.disablerollbackfalseDisables the automatic rollback (if an instance cannot be started) during deployment.
ch.nevis.nevisadmin.deploy.disablehostsfalseDisables deployment of additional entries for /etc/hosts.
ch.nevis.nevisadmin.deploy.notification.scriptSets the path to the pre/post installation script.
ch.nevis.nevisadmin.end2endmonitor.agent.cmdSpecifies a command/script to be executed by the agent after running and end2end monitor test pass.
ch.nevis.nevisadmin.environment.legacy-session-management.default1Disables by default legacy session management for new environments.
ch.nevis.nevisadmin.environment.size.defaultMSets the default environment size (S, M, L, XL).
ch.nevis.nevisadmin.group.automaticassignment0Controls the automatic environment/zone to group assignment by regular expressions.
ch.nevis.nevisadmin.gui.breadcrumb.includeids0Shows the selected object ID on the bread crumb.
ch.nevis.nevisadmin.gui.conf.environment.revisions.show0Enables the Past revisions menu item and related functionality in the Configuration tab. Once this feature is in use, downgrading to nevisAdmin 3.6.2 or lower is not supported anymore.
ch.nevis.nevisadmin.gui.headercolordefaultChanges the header color to indicate special usage. Possible values are: red, green, blue, orange, default.
ch.nevis.nevisadmin.gui.headerscrolling.enabled1Allows scrolling the header if it is too big.
ch.nevis.nevisadmin.gui.op.environment.load.revisions.hide0Disables the Rollback function within the Operations tab (previously known as the"Load" function), to restore old environment revisions including their infrastructure. This function should be hidden because it causes high memory usage and slowness.
ch.nevis.nevisadmin.import.application.defaults1Defines whether to apply default configuration settings to the imported applications (e.g., proxy services).
ch.nevis.nevisadmin.import.application.preserveUnmanagedFilesfalseThis is an expert setting for import. If set to "true", this property prevents the removal of files, which are not part of the imported .exp file, from the realm file managers in the target environment.
ch.nevis.nevisadmin.import.application.excludeInheritedUpperLowerResourcesfalseThis is an expert setting for import. If set to "true", this property ensures that mappings of imported applications do not inherit any resources from existing parent mappings in the target environment.
ch.nevis.nevisadmin.keybox.create.keypass.base64.encoded0Enables nevisKeybox keypass base64 encoding.
ch.nevis.nevisadmin.log.processlog0Generates separate logs for Import, Deploy, Commit, and Load categories.
ch.nevis.nevisadmin.log.processlog.filecount10How many log files to keep for each category.
ch.nevis.nevisadmin.log.proxy.ErrorLogPfxAdditional piped log tools to add to the Apache ErrorLog directive, for example: /opt/bin/doanything /var/opt/nevisproxy/NAME_OF_PROXY_INSTANCE/logs/anything.log.
ch.nevis.nevisadmin.log.proxy.LogFormatLogFormat for the nevisProxy access.log file.
ch.nevis.nevisadmin.log.proxy.TraceId%u.%CDefines the format of the transaction ID generated by nevisProxy.
ch.nevis.nevisadmin.login.additional.logging.enabled0Additional login logging.
ch.nevis.nevisadmin.login.cert.createuser0Automatically adds users logged in via SSL cert to the repository.
ch.nevis.nevisadmin.login.ldap.createuser0Automatically adds users logged in via LDAP to the repository.
ch.nevis.nevisadmin.monitor.adminheap30Used for monitoring. Specifies the min. free heap memory in megabytes of nevisAdmin itself.
ch.nevis.nevisadmin.monitor.application.errors.only5xx0Counts 4xx and 5xx (default/false) or only 5xx (true) status codes to generate application alerts.
ch.nevis.nevisadmin.monitor.application.errors.threshold2Used for monitoring. Specifies the max. percentage of errors (4xx/5xx responses) of an application.
ch.nevis.nevisadmin.monitor.application.stat.timeout10000Used for monitoring. Specifies the timeout when polling for the application statistics.
ch.nevis.nevisadmin.monitor.certificate.expiration24 * 30Used to alert about expired certificates (default at 24*30 hours = 30 days).
ch.nevis.nevisadmin.monitor.default-import.enabletrueUse this background job to import default resources into new environments.
ch.nevis.nevisadmin.monitor.default-import.timer*:*/5A simplified cron expression which sets the interval of this background job. The default checks every 5 minutes.
ch.nevis.nevisadmin.monitor.file-integrity-check.enabletrueEnables a background job which periodically checks the integrity of deployed files on target servers.
ch.nevis.nevisadmin.monitor.file-integrity-check.skiplist""Define rules for File Integrity Check exceptions. Rules are separated by "|". A rule looks like this: "{serverName}:{pathToFile1},{pathToFile2}". If the serverName is missing, the provided paths will be globally skipped, if the paths are missing the server will be fully skipped. If the property value equals : the whole check will be skipped.ch.nevis.nevisadmin.monitor.file-integrity-check.skiplist
ch.nevis.nevisadmin.monitor.file-integrity-check.threadbasedfalseUse separate threads to check integrity of files.
ch.nevis.nevisadmin.monitor.file-integrity-check.timer*:15Sets a single value (in minutes) to run file integrity checks every hour at a specific minute (for example, 15 means the system will run checks every hour 15 minutes past) or use */5 for checks every 5 minutes in the hour (that is, at xx:05, xx:10, xx:15, xx:20, and so on). The default runs every hour at 15 past.
ch.nevis.nevisadmin.monitor.freedisk512000Used for monitoring. Specifies the min. free disk (kbytes).
ch.nevis.nevisadmin.monitor.freememory512000Used for monitoring. Specifies the min. free memory (kbytes).
ch.nevis.nevisadmin.monitor.freeswap1000Used for monitoring. Specifies the min. free swap (mbytes).
ch.nevis.nevisadmin.monitor.input-learning.enabletrueBackground job required for self-learning input validation filters.
ch.nevis.nevisadmin.monitor.input-learning.timer*:5A simplified cron expression (hour:minute). The default runs every hour at 5 past.
ch.nevis.nevisadmin.monitor.instance.status.timeout60000Used for monitoring. Specifies the timeout when polling instance status.
ch.nevis.nevisadmin.monitor.loghost.addressSpace separated list of host:port to connect to the elasticsearch cluster, usually localhost:9300.
ch.nevis.nevisadmin.monitor.loghost.limit100Limits the number of events to fetch.
ch.nevis.nevisadmin.monitor.loghost.weburlSets the href to access kibana (to build the dashboard link, e.g. https://admsrv.zh.adnovum.ch/nevislog/).
ch.nevis.nevisadmin.monitor.loghost.window300000Defines the time window to search for error messages (in milliseconds).
ch.nevis.nevisadmin.monitor.mail-report.enabletrueBackground job which sends an e-mail report.
ch.nevis.nevisadmin.monitor.mail-report.timer6:9Runs at 6:09 AM.
ch.nevis.nevisadmin.pki-expiration-check.enabletrueBackground job which checks expiration of certificates on servers.
ch.nevis.nevisadmin.pki-expiration-check.timer9:3Runs at 9:03 AM.
ch.nevis.nevisadmin.monitor.status-check.enabletrueBackground job which checks the status of servers and deployed instances.
ch.nevis.nevisadmin.monitor.status-check.timer:/5Default runs every 5 minutes
ch.nevis.nevisadmin.monitor.server.status.timeout10000Used for monitoring. Specifies the timeout when polling for the server status.
ch.nevis.nevisadmin.monitor.threadpool10Sets the size of monitoring thread pools.
ch.nevis.nevisadmin.monitor.url-learning.enabletrueUsed for self-learning of URL validation filters.
ch.nevis.nevisadmin.monitor.url-learning.timer*:1Simplified cron expression. The default runs every hour at 1 past.
ch.nevis.nevisadmin.neviskeybox.hsm.command.groupComes from “ch.nevis.nevisadmin.sys.defaultgroup”
ch.nevis.nevisadmin.neviskeybox.hsm.command.ownerComes from “ch.nevis.nevisadmin.sys.defaultuser”
ch.nevis.nevisadmin.neviskeybox.parser.legacy.enable1Enables legacy parsing of the keybox output for backward compatibility.
ch.nevis.nevisadmin.nevissign.enabled0Used to enable the nevisSign functionality.
ch.nevis.nevisadmin.reporting.simpletemplate/opt/nevisadmin/repository/templates/pdf/simpleReport.xslPath to the simple report xsl file.
ch.nevis.nevisadmin.reporting.weekly.dayMondayThe weekday to create the automatic usage report.
ch.nevis.nevisadmin.rest.access.control.allow.headersAccept, Content-Type, AuthorizationSets the "Access-Control-Allow-Headers" value in the response header.
ch.nevis.nevisadmin.rest.access.control.allow.methodsGET, POST, DELETE, PUT, PATCH, OPTIONSSets the "Access-Control-Allow-Methods" value in the response header.
ch.nevis.nevisadmin.rest.access.control.allow.origin*Sets the "Access-Control-Allow-Origin" value in the response header.
ch.nevis.nevisadmin.revision.allowrollback1Enables the possibility to restore old revisions of environments within the web front end of nevisAdmin.
ch.nevis.nevisadmin.sectoken.default.algorithmOverwrites the Nevis SecToken default algorithm (affects nevisAuth TokenSpec & nevisProxy).
ch.nevis.nevisadmin.smtp.sender[email protected]The sender address for e-mail notifications.
ch.nevis.nevisadmin.software.pathDefines the log path of installed packages via the software update function.
ch.nevis.nevisadmin.software.repository“ch.nevis.nevisadmin.repository.root”/../softwareDefines the directory to store software images.
ch.nevis.nevisadmin.ssl.proxy.cache.maxInactiveIntervalUses the Realm's initial inactivity timeoutDefines the timeout settings for the nevisProxy's SSLCache (overrides the values depending on the environment's timeout settings and calculated by nevisAdmin).
ch.nevis.nevisadmin.ssl.proxy.cache.maxLifetimeUses the Realm's final timeoutDefines the timeout settings for the nevisProxy's SSLCache (overrides the values depending on the environment's timeout settings and calculated by nevisAdmin).
ch.nevis.nevisadmin.ssl.proxy.cache.shared0Enables a shared SSLCache for the navajo.xml (within Engine instead Connector node).
ch.nevis.nevisadmin.ssl.proxy.SSLProtocol, ch.nevis.nevisadmin.ssl.proxy.SSLOptions, ch.nevis.nevisadmin.ssl.proxy.SSLCipherSuite, ch.nevis.nevisadmin.ssl.proxy.SSLHonorCipherOrder, ch.nevis.nevisadmin.ssl.proxy.SSLRenegBufferSize, ch.nevis.nevisadmin.ssl.proxy.SSLInsecureRenegotiation, ch.nevis.nevisadmin.ssl.proxy.SSLDHParametersFile, ch.nevis.nevisadmin.ssl.proxy.SSLRandomSeed.<n>These properties define the defaults for the generation of navajo.xml file (for example, for the SSL element).
ch.nevis.nevisadmin.ssl.transport.SSLProtocol, ch.nevis.nevisadmin.ssl.transport.SSLCipherSuites,ch.nevis.nevisadmin.ssl.transport.DNSCache, ch.nevis.nevisadmin.ssl.transport.DNSCache.ttlThese properties define the default settings for the Esauth4ConnectorServlet.
ch.nevis.nevisadmin.statistics.generation.disable0Disables the statistics generation.
ch.nevis.nevisadmin.sys.admusernvbuserSpecifies the file ownership settings.
ch.nevis.nevisadmin.sys.authusernvauserSpecifies the file ownership settings.
ch.nevis.nevisadmin.sys.defaultgroupnvbgroupSpecifies the file ownership settings.
ch.nevis.nevisadmin.sys.defaultusernvbuserSpecifies the file ownership settings.
ch.nevis.nevisadmin.sys.proxyusernvpuserSpecifies the file ownership settings.
ch.nevis.nevisadmin.syslog.auth.severity.auditINFODefines the minimum severity of filtered log messages forwarded to the syslog host.
ch.nevis.nevisadmin.syslog.java.conversionpattern: %d{ISO8601} %-15.15t %-40.40c %-5.5p %x%m%n
ch.nevis.nevisadmin.syslog.java.severity.serverWARNDefines the minimum severity of filtered log messages forwarded to the syslog host.
ch.nevis.nevisadmin.syslog.proxy.severity.apacheINFODefines the minimum severity of filtered log messages forwarded to the syslog host.
ch.nevis.nevisadmin.user.already.logged.in.notificationonShows a post-login dialog in case multiple users are logged in. The dialog offers the following options: continue; logout; continue in read-only mode
ch.nevis.nevisadmin.user.passwordpolicy.minLength, ch.nevis.nevisadmin.user.passwordpolicy.minLower, ch.nevis.nevisadmin.user.passwordpolicy.minNonAlnum, ch.nevis.nevisadmin.user.passwordpolicy.minNonLetter, ch.nevis.nevisadmin.user.passwordpolicy.minUpper0Specifies the nevisAdmin user password policy settings.
ch.nevis.isiweb4.servlet.connector.http.SSLProtocol, ch.nevis.isiweb4.servlet.connector.http.SSLCipherSuites, ch.nevis.isiweb4.servlet.connector.http.ResponseLineSize, ch.nevis.isiweb4.servlet.connector.http.DNSCache, ch.nevis.isiweb4.servlet.connector.http.DNSCache.ttlThese properties define the default settings for the Http(s)ConnectorServlet.
nevisadmin.bin.cvscvsSets the path/file name of the CVS binary to use.
nevisadmin.bin.cvs.tmo300000Defines the timeout for CVS command execution.
nevisadmin.bin.qsregex/opt/nevisadmin/bin/qsregexSets the path/file name of the qsregex binary.
nevisadmin.bin.qsregex.tmo1000Defines the timeout for qsregex command execution.