Mobile Policy Common Commands

cluster

Configures the cluster information.

Command Mode

Exec > Global Configuration

Syntax

cluster { cluster-id cluster_id | system-id system_id } 

cluster-id cluster_id

Specify the cluster ID.

Must be a string.

Default Value: "cluster-1".

system-id system_id

Specify the system ID.

Must be a string.

Default Value: "system-1".

Usage Guidelines

Use this command to configure cluster information.

cps-license

Registers the PCF license.

Command Mode

Exec > Global Configuration

Syntax

cps-licence license_name encrypted-key encrypted_key 

cps-licence license_name

Specify the feature name.

Must be a string.

encrypted-key key

Specify the encrypted key.

Must be a string.

Usage Guidelines

Use this command to registers the PCF license.

db

Configures the database parameter.

Product

PCF

Privilege Level

Security Administrator, Administrator

Syntax

db { balance shard count number_of_shard | global-settings { db-replica number_of_replica | timers { catchup-timeout-millis catchup_timeout | election-timeout-millis election_timeout | heartbeat-interval-millis heartbeat_interval } } | spr shard-count number_of_spr_shards } 

balance shard count number_of_shard

Specify to abort commit. Specify the persist ID.

Must be an integer.

db-replica number_of_replica

Specify the number of database replicas.

Must be an integer.

catchup-timeout-millis catchup_timeout

Specify the catchup timeout in milliseconds.

Must be an integer.

election-timeout-millis election_timeout

Specify the election timeout in milliseconds.

Must be an integer.

heartbeat-interval-millis heartbeat_interval

Specify the heartbeat interval in milliseconds.

Must be an integer.

spr shard-countnumber_of_spr_shards

Specify the number of SPR shards.

Must be an integer.

Usage Guidelines

Use this command to configure the database parameter.

db balance

Configures the Balance database.

Command Mode

Exec > Global Configuration

Syntax

balance shard-count balance_db_shard_count 

shard-count balance_db_shard_count

Specify the Balance database's shard count.

Must be an integer.

Default Value: 1.

Usage Guidelines

Use this command to configure the Balance database.

Example

The following command configures the Balance database's shard count to 1:
db balance shard-count 1 

db global-settings volume-storage-class

Configures the global volume storage settings for DB.

Command Mode

Exec > Global Configuration

Syntax

global-settings volume-storage-class [ default | local ] 

volume-storage-class [ default | local ]

If the use-volume-claim is enabled, then specify the volume storage class.

Usage Guidelines

Use this command to configure the volume storage class for database.

db global-settings db-replica

Configures the replica count for the global DB.

Command Mode

Exec > Global Configuration

Syntax

global-settings db-replica replica_count 

db-replica replica_count

Specify the global DB replica count.

Must be an integer.

Default Value: 3.

Usage Guidelines

Use this command to configure the replica count for the global DB.

db global-settings timers

Configures global MongoDB timers.

Command Mode

Exec > Global Configuration

Syntax

global-settings timers { catchup-timeout-millis catchup_timeout | election-timeout-millis election_timeout | heartbeat-interval-millis heartbeat_interval } 

catchup-timeout-millis catchup_timeout

Specify the global catchup timeout period, in milliseconds.

Must be an integer.

Default Value: 2000.

election-timeout-millis election_timeout

Specify the global election timeout period, in milliseconds.

Must be an integer.

Default Value: 2000.

heartbeat-interval-millis heartbeat_interval

Specify the global heartbeat interval period, in milliseconds.

Must be an integer.

Default Value: 300.

Usage Guidelines

Use this command to configure the global MongoDB timers.

db spr

Configures the SPR database.

Command Mode

Exec > Global Configuration

Syntax

spr shard-count shard_count 

shard-count shard_count

Specify the SPR database's shard count.

Must be an integer.

Default Value: 1.

Usage Guidelines

Use this command to configure the SPR database.

Example

The following command configures the SPR database's shard count to 20:
db spr shard-count 20 

debug

Configures the debug parameters.

Syntax

debug { logging { default-level logging_level | logger logger_name } | tracing { jaeger agent udp { host host_address | port port_number } | type } } 

default-level default_level

Specify the default level that must be logged.

Must be one of the following:

  • trace

  • debug

  • info

  • warn

  • error

  • off

logger logger_utility

Specify the logging utility name.

Must be a string.

debug tracing type tracing_type

Specify the tracing type.

Must be one of the following:

  • OPENTRACING_JAEGER

  • DISABLED

Default Value: DISABLED.

host host_address

Specify the host address of the Jaeger agent.

port port_number

Specify the port number of the Jaeger agent.

Usage Guidelines

Use this command to configure debug information.

debug logging

Configures the logging parameters.

Command Mode

Exec > Global Configuration

Syntax

logging default-level [ debug | error | info | off | trace | warn] 

default-level default_level

Specify the default level that must be logged.

Must be one of the following:

  • trace

  • debug

  • info

  • warn

  • error

  • off

Usage Guidelines

Use this command to configure the logging parameters.

debug logging logger

Configures the logging utility.

Command Mode

Exec > Global Configuration

Syntax

logging logger logger_utility 

logger logger_utility

Specify the logging utility name.

Must be a string.

Usage Guidelines

Use this command to configure the logging utility.

debug splunk

Configures the Splunk parameters.

Command Mode

Exec > Global Configuration

Syntax

splunk { batch-count event_count | batch-interval-ms batch_interval | batch-size-bytes max_batch | hec-token splunk_hec | hec-url port_splunk } 

batch-count batch_count

Specify the maximum number of events to send per batch.

Must be an integer.

Default Value: 10.

batch-interval-ms batch_interval

Specify the interval at which to send batched events, in milliseconds.

Must be an integer.

Default Value: 10000.

batch-size-bytes batch_size

Specify the maximum size of each batch of events, in bytes.

Must be an integer.

Default Value: 10240.

hec-token hec_token

Specify the Splunk HEC token.

Must be a string.

hec-url hec_url

Specify the protocol, hostname, and HTTP Event Collector port (8088 by default) of Splunk server.

Must be a string.

Usage Guidelines

Use this command to configure the Splunk parameters.

debug tracing

Configures the tracing parameters.

Command Mode

Exec > Global Configuration

Syntax

tracing [ jaegar agent agent udp [ host host_name | port port_number  ] | type tracing_type ] 

jaegar agent agent

Specify the Jaegar agen'st name

host host_name

Specify the host name of the Jaegar agent.

port port_number

Specify the port number of the Jaegar agent.

debug tracing type tracing_type.

Specify the tracing type.

Must be one of the following:

  • OPENTRACING_JAEGER

  • DISABLED

Default Value: DISABLED.

Usage Guidelines

Use this command to configure the tracing parameters.

debug tracing jaeger

Configures the Jaeger parameters.

Command Mode

Exec > Global Configuration

Syntax

jaeger [ agent host host_name | port port_name ] | type tracing_type ] 

agent host host_name

Specify the host address of the Jaeger agent.

port port_number

Specify the port number of the Jaeger agent.

type tracing_type

Specify the tracing type.

Must be one of the following:

  • OPENTRACING_JAEGER

  • DISABLED

Default Value: DISABLED.

Usage Guidelines

Use this command to configure the Jaeger parameters.

features

Configures the control configuration for the application features.

Command Mode

Exec > Global Configuration

Syntax

features { activemq cluster-ip cluster_ip_address | patching ingress-enabled { false | true } } 

Usage Guidelines

Use this command configure the control configuration for the application features.

Example

The following command configures the control configuration for the application feature:
features { activemq cluster-ip 122.12.122.11 | patching ingress-enabled true } 

features activemq

Configures the ActiveMQ parameters.

Command Mode

Exec > Global Configuration

Syntax

activemq cluster-ip ip_address 

cluster-ip ip_address

Specify the IP address of the cluster.

Must be an IP address.

Usage Guidelines

Use this command to configure the ActiveMQ parameters.

features patching

Enables or disables the Ingress API.

Command Mode

Exec > Global Configuration

Syntax

patching ingress-enabled { false | true } 

ingress-enabled { false | true }

Specify to enable or disable patching ingress, not secured.

Must be either "false" or "true".

Default Value: false.

Usage Guidelines

Use this command to enable or disable the Ingress API.

show ldap

Displays the LDAP connections.

Command Mode

Exec

Syntax

show ldap { connection-status { metric metric_type | value metric_value } | displaylevel depth_level } 

metric metric_type

Specify the metric type.

Must be a string.

value metric_value

Specify the metric value.

Must be a string.

displaylevel depth_level

Specify the depth level of the LDAP connections.

Usage Guidelines

Use this command to display the LDAP connection information.

Example

The following command displays the LDAP connections:
show ldap connection-status 

show ldap connection-status

Displays the LDAP connections for the SPR lookup.

Command Mode

Exec

Syntax

show ldap connection-status { metric metric_type | value metric_value} 

metric metric_type

Specify the metric type

Must be a string.

value metric_value

Specify the metric value

Must be a string.

Usage Guidelines

Use this command to display LDAP connections for the SPR lookup.

ldap server-set

Configures the LDAP server set parameters.

Command Mode

Exec > Global Configuration

Syntax

ldap server-set server_name [ add-child-on-parent-create-failure { false | true } | add-request-attribute attribute_name attribute_value | binds-per-second binds_count | connection connection_address port_number {auto-reconnect { false | true } | bind-timeout-ms bind_timeout_ms | connection-rule FASTEST/ROUND_ROBIN | priority priority_number | timeout-ms timeout } | ignore-ldap-error-result-codes result_code | initial-connections initial_connections | max-connections max_connections | max-failover-connection-age-ms max_failover_connections | missing-attribute-result-code attribute_code | number-consecutive-timeouts-for-bad-connection count_timeout | retry-count retry_count | retry-timer-ms retry_time | use-asynchronous-operations { false | true } ] 

add-child-on-parent-create-failure { false | true }

Specify to enable or disable additions of child on parent creation failure.

Must be either "false" or "true".

Default Value: true.

binds-per-second binds_count

Specify the number of binds per second.

Must be of type decimal64, with 2 fraction digits.

Default Value: 0.20.

ignore-ldap-error-result-codes result_code

Specify to ignore LDAP error result codes.

Must be an integer.

initial-connections initial_connections

Specify the initial connections.

Must be an integer.

Default Value: 1.

max-connections max_connections

Specify the maximum number of connections.

Must be an integer.

Default Value: 10.

max-failover-connection-age-ms max_failover_connections

Specify the maximum failover connection age in milliseconds.

Must be an integer.

Default Value: 60000.

missing-attribute-result-code result_code

Specify missing attribute result code.

Must be an integer.

Default Value: 0.

number-consecutive-timeouts-for-bad-connection count_timeouts

Specify the number of consecutive timeouts for bad connection.

Must be an integer.

Default Value: -1.

retry-count retry_count

Specify the retry count.

Must be an integer.

Default Value: 3.

retry-timer-ms retry_timeout

Specify the retry timer timeout period in milliseconds.

Must be an integer.

Default Value: 50.

server-set server_name

Specify the name of the LDAP server set.

Must be a string.

use-asynchronous-operations { false | true }

Specify to enable or disable using LDAP asynchronous operations.

Must be either "false" or "true".

Default Value: true.

Usage Guidelines

Use this command to configure LDAP server set parameters.

ldap server-set add-request-attribute

Configures the request attribute.

Command Mode

Exec > Global Configuration

Syntax

add-request-attribute attribute_name attribute_value 

attribute_name

Specify the request attribute name.

Must be a string.

attribute_value

Specify the request attribute value.

Must be a string.

Usage Guidelines

Use this command to configure the request attribute.

ldap server-set connection

Configure the LDAP connection parameters.

Command Mode

Exec > Global Configuration

Syntax

connection ldap_server_address port_number { auto-reconnect { false | true } | bind-timeout-ms bind_timeout | connection-rule connection_rule | priority priority_number | timeout-ms timeout } 

auto-reconnect { false | true }

Specify to enable or disable auto reconnect to LDAP hosts.

Must be either "false" or "true".

Default Value: true.

bind-timeout-ms bind_timeout

Specify the timeout period for bind calls to LDAP in milliseconds.

Must be an integer.

Default Value: 2000.

connection-rule connection_algorithm

Specify the connection algorithm.

Must be one of the following:

  • FASTEST

  • ROUND_ROBIN

Default Value: ROUND_ROBIN.

connection port_number

Specify the port number of the LDAP server.

Must be an integer.

priority priority_number

Specify the priority of the LDAP server set.

Must be an integer.

Default Value: 100.

timeout-ms timeout

Specify the timeout period for calls to LDAP in milliseconds.

Must be an integer.

Default Value: 200.

ldap_server_address

Specify the address of the LDAP server.

Must be a string.

Usage Guidelines

Use this command to configure the LDAP connection parameters.

ldap server-set health-check

Configures the health check parameters.

Command Mode

Exec > Global Configuration

Syntax

health-check { attributes attribute_string | dn health_check_dn | filter filter_string | interval-ms interval_value } 

attributes health_check_attributes

Specify the health check attributes.

Must be a string.

dn health_check_dn

Specify the health check DN.

Must be a string.

filter health_check_filter

Specify the health check filter.

Must be a string.

interval-ms health_check_interval

Specify the health check interval in milliseconds.

Must be an integer.

Default Value: 5000.

Usage Guidelines

Use this command to configure the health check parameters.

ldap server-set search-user

Enables search user for LDAP.

Command Mode

Exec > Global Configuration

Syntax

search-user { [ dn user_dn ] [ password user_password ] } 

dn user_dn

Specify the user DN.

Must be a string.

password user_password

Specify the user password.

Must be an aes-cfb-128-encrypted string.

Usage Guidelines

Use this command to enable search user for LDAP.

testing

Configures the parameters for the Testing feature

Command Mode

Exec > Global Configuration

Syntax

testing { external-mongo-access { admin | balance | session | spr } | subversion-ingress-enabled | zing-compiler-options | zing-memory } { ip ip_address | port port_number } 

code-coverage-enabled { false | true }

Specify to enable or disable code coverage reporting with jacoco.

Must be either "false" or "true".

Default Value: false.

development-mode-enabled { false | true }

Specify to enable or disable development mode.

Must be either "false" or "true".

Default Value: false.

enforce-affinity-rules { false | true }

Specify to enable or disable anti affinity rules for pod scheduling.

Must be either "false" or "true".

Default Value: true.

ldap-grpc-enabled { false | true }

Specify to enable or disable redis IPC communication between ldap-ep to engine.

Must be either "false" or "true".

Default Value: false.

subversion-ingress-enabled { false | true }

Specify if the subversion ingress is enabled.

Must be either "false" or "true".

Default Value: false.

zing-compiler-options compiler_options

Specify the compiler options for Zing.

Must be one of the following:

  • C2

  • Falcon

Default Value: "C2".

Usage Guidelines

Use this command to configure the parameters for the Testing feature.

testing tls-handshake

Configures the TLS/SSL testing parameters.

Command Mode

Exec > Global Configuration

Syntax

tls-handshake 

alpn-disabled { false | true }

Specify to enable or disable ALPN extenstion in HTTP2 TLS ClientHello handshake.

Must be either "false" or "true".

Default Value: false.

debug-enabled { false | true }

Specify to enable or disable TLS/SSL debug logs.

Must be either "false" or "true".

Default Value: false.

trust-all { false | true }

Specify to enable or disable Keystore certificate validation for client.

Must be either "false" or "true".

Default Value: false.

Usage Guidelines

Use this command to configure the TLS/SSL testing parametes.

testing zing-memory

Configures the storage for preserving the Zing data.

Command Mode

Exec > Global Configuration

Syntax

zing-memory [ datastore datastore_zing_memory | diameter diameter_zing_memory | engine engine_zing_memory | ldap ldap_zing_memory ] 

datastore datastore_zing_memory

Specify the datastore Zing memory. For example, -Xmx4g/-Xmx8g.

Must be a string.

Default Value: "-Xmx8g".

diameter diameter_zing_memory

Specify the Diameter Zing memory. For example, -Xmx4g/-Xmx8g.

Must be a string.

Default Value: "-Xmx8g".

engine engine_zing_memory

Specify the engine Zing memory. For example -Xmx4g/-Xmx8g.

Must be a string.

Default Value: "-Xmx8g".

ldap ldap_zing_memory

Specify the LDAP endpoint. For example, -Xmx4g/-Xmx8g.

Must be a string.

Default Value: "-Xmx8g".

Usage Guidelines

Use this command to preserve the Zing data.

Example

The following command configures the storage for Zing data:
testing zing-memory [ datastore -Xmx8g | diameter -Xmx4g | engine -Xmx8g | ldap -Xmx4g ] 

zing

Enables or disables the Zing feature for the engine.

Command Mode

Exec > Global Configuration

Syntax

zing enable { false | true } 

enable { false | true }

Specity to enable or disable Zing Java Virtual Machine.

Must be either "false" or "true".

Default Value: false.

Usage Guidelines

Use this command to enable or disable the Zing feature for the engine.

Example

The following command configures Zing for the engine:
zing enable true