CEPM Quick Start Guide
Appendix A - Configuring pep_config.xml file
Download this chapter
Appendix A - Configuring pep_config.xml fileAppendix A - Configuring pep_config.xml file
Download the complete book
CEPM Quick Start GuideCEPM Quick Start Guide (PDF - 2 MB)
 Feedback

Table Of Contents

PEP Configuration File


PEP Configuration File

This appendix contains a sample pep_config.xml file. For detailed information about each and every tag, refer to the Cisco Enterprise Policy Manager Developers Guide. 


<pep_config version="3.0">

	<cache decisionCacheEnabled="true" cacherefreshtype="onlyupdated" 
decisionsOnly="false" provider="net.securent.pep.cache.CacheProvider" 
implementor="net.securent.admin.sdk.cache.impl.JBossCache" 
eventProvider="net.securent.pep.event.EventProvider" >		

		<type>TTL</type>

		<refresh enable="true">INVALIDATE</refresh>

		<interval>20</interval>

		<prefetch enable="false" type="user" bulkUsersPerRequest="10">

			<prefetchForApis>

				<api name="isUserAccessAllowed">  

				</api>

			 </prefetchForApis>

			<!-- Selective prefetch for configured  Groups, Roles, Resources entities-->

				<groups>

					<!-- FQN of GroupName -->

					<!--<group>SampleGroup:SampleApplication:Group1</group>-->

				</groups>

				<roles>

				<!-- role>SampleGroup:SampleApplication:Role1</role-->

				<!--<role>SampleGroup:SampleApplication:Role2</role>-->

			    </roles>  

				<resources>

					<!-- FQN of ResourceName -->

				 <!--<resource>SampleGroup:SampleApplication:Res1</resource>

			 	--></resources>  

			</prefetch>


		<applicationgroup>Prime group</applicationgroup>

		<application>Prime portal</application>

</cache>

<logs enable="false" records="100" logsTTL="10"/>


	<loadbalance enabled="true">

		<algorithm>roundrobin</algorithm>

		<refreshtime>10</refreshtime>

		<timeout>10000</timeout>

		<maxconnectionsperhost>10</maxconnectionsperhost>

		<maxtotalconnections>1000</maxtotalconnections>

	</loadbalance>

	<pdps>

	<!--pdp>

			<protocol>soap</protocol>

			<username>admin</username>

			<password>h1BYu+lcwcM=</password>

			<url>http://host:port/pdp/services/AuthorizationService</url>

			<timeout>1000</timeout>

		</pdp>

		 <pdp>

			<protocol>http</protocol>

			<username>admin</username>

			<password>h1BYu+lcwcM=</password>

			<url>http://host:port/pdp/AuthorizationEndPoint</url>

			<responsetype>Object</responsetype>

			<timeout>1000</timeout>

		</pdp>

	<!--pdp>

			<protocol>rmi</protocol>

			<username>admin</username>

			<password>h1BYu+lcwcM=</password>

			<url>rmi://host:10002/pdpObj</url>

			<timeout>1000</timeout>

	    </pdp-->

	</pdps>


	<http-proxy>

			<host></host>

			<port></port>

	</http-proxy>


	<apis>

		<api>

			<url>http://host:port/cepm</url>

			<username>superuser</username>

			<password>h1BYu+lcwcM=</password>

			<repositoryname>Default Domain</repositoryname>

		</api>

	</apis>

	<adapters>

		<soap>net.securent.pep.soap.SoapTransportAdaptor</soap>

		<rmi>net.securent.pep.rmi.RMITransportAdaptor</rmi>

		<http>net.securent.pep.http.HttpTransportAdaptor</http>

		<java>net.securent.pep.java.JavaTransportAdaptor</java>

		<https>net.securent.pep.http.HttpTransportAdaptor</https>

	</adapters>

    <record>false</record>

</pep_config>