Book

Core Token Service (CTS) and sessions in AM/OpenAM

This book provides information on the CTS and sessions in AM/OpenAM, including best practice advice for configuring CTS.


Printer friendly view

Table of Contents

  • 1 CTS Configuration
    • 1.1 Best practice for using Core Token Service (CTS) Affinity based load balancing in AM (All versions) and OpenAM 13.5.1, 13.5.2
    • 1.2 Best practice for configuring an external DS/OpenDJ instance for the Core Token Service (CTS) in AM/OpenAM (All versions)
    • 1.3 How do I configure an external CTS token store in AM/OpenAM (All versions) using ssoadm?
  • 2 CTS Token Types
    • 2.1 How do I know what LDAP attributes are used by CTS tokens in AM (All versions) and OpenAM 13.x?
    • 2.2 How do I know what token types are stored in the CTS in AM (All versions) and OpenAM 13.x?
    • 2.3 How do I delete all or some of the tokens in the CTS store in AM (All versions)?
  • 3 Sessions Configuration
    • 3.1 Best practices for configuring sessions in AM (All versions) to reduce the impact on the CTS store
    • 3.2 How do I change the session cookie name for AM/OpenAM and Policy Agents (All versions)?
    • 3.3 How do I configure session timeouts in AM/OpenAM (All versions)?
    • 3.4 How do I configure realm level session timeouts in AM/OpenAM (All versions)?
    • 3.5 How do I configure user level session timeouts in AM/OpenAM (All versions)?
    • 3.6 How do I configure login page session timeouts in AM/OpenAM (All versions) when using authentication modules?
    • 3.7 How do I change the Maximum Caching Time in AM 5.x, 6 and OpenAM 12.x, 13.x?
    • 3.8 How do I enable Client-based sessions in AM (All versions) and OpenAM 13.x?
    • 3.9 How do I change the location of the stats logs in AM/OpenAM (All versions)?
    • 3.10 How do I clear stats logs in AM/OpenAM (All versions)?
    • 3.11 How do I stop stats logging in AM/OpenAM (All versions)?
  • 4 Session Details
    • 4.1 How do I retrieve user attributes from a session using the REST API in AM (All versions) and OpenAM 13.5?
    • 4.2 How do I authenticate to another chain but keep the same session token in AM (All versions)?
    • 4.3 How do I obtain the user's session ID in AM/OpenAM (All versions) when browser cookies are disabled?
    • 4.4 How do I monitor session statistics in AM/OpenAM (All versions)?
  • 5 Frequently Asked Questions
    • 5.1 FAQ: Core Token Service (CTS) and session high availability in AM/OpenAM
    • 5.2 FAQ: Session crosstalk and the Core Token Service (CTS) in OpenAM
  • 6 Known Issues
    • 6.1 CTS
      • 6.1.1 ERROR: CTS Async: Task Processor Error: interrupt detected when shutting down AM/OpenAM (All versions)
      • 6.1.2 Continuous query listener has lost its connection and insufficient access rights errors in AM 5.x and 6.0.x
      • 6.1.3 AM 5, 5.1.x and OpenAM 13.5.1 cannot access external CTS after configuration is changed via the console
      • 6.1.4 CoreSystem debug log grows rapidly in OpenAM 13.0 and 13.5 when CTS connection fails
    • 6.2 Sessions
      • 6.2.1 Sessions in AM/OpenAM (All versions) exceed the session quota limit without expiring
      • 6.2.2 Session quotas not limiting active user sessions in AM/OpenAM (All versions) when persistent cookies are used
Loading...