...
...
Section | Name | Original Value |
| Possible Values | Description |
---|
authentication | auth_crowd_password |
|
| <password> |
|
authentication | auth_crowd_server |
|
| <ip> |
|
authentication | auth_crowd_user |
|
| <username> |
|
authentication | auth_expire_seconds | 3600 |
| <integer> |
|
authentication | auth_htpasswd_encrypt | crypt |
| crypt, plaintext, apache-md5 |
|
authentication | auth_htpasswd_file | <omk_conf>/users.dat |
| <relative filepath> |
|
authentication | auth_lockout_after | 0 |
| <integer> | seconds, 0 for none. |
authentication | auth_login_motd | Authentication required: default credentials are nmis/nm1888 |
|
|
|
authentication | auth_method_1 | htpasswd |
| htpasswd, openaudit, radias, tacacs, crowd, system, ldaps, ldap, ms-ldap, ms-ldaps, novell-ldap, connectwise, pam, openid_connect | openid_connect supported as at April 2021. See below. |
authentication | auth_method_2 |
|
| htpasswd, openaudit, radias, tacacs, crowd, system, ldaps, ldap, ms-ldap, ms-ldaps, novell-ldap, connectwise, pam, openid_connect |
|
authentication | auth_method_3 |
|
| htpasswd, openaudit, radias, tacacs, crowd, system, ldaps, ldap, ms-ldap, ms-ldaps, novell-ldap, connectwise, pam, openid_connect |
|
authentication | auth_ms_ldap_attr | sAMAccountName |
|
|
|
authentication | auth_ms_ldap_base | CN=Users,DC=your_domain,DC=com |
| <ldap> |
|
authentication | auth_ms_ldap_debug | true |
| true, false |
|
authentication | auth_ms_ldap_dn_acc | CN=Administrator,CN=Users,DC=your_domain,DC=com |
|
|
|
authentication | auth_ms_ldap_dn_psw | your_administrator_password |
| <password> |
|
authentication | auth_ms_ldap_group | CN=Users,DC=your_domain,DC=com |
| <ldap> |
|
authentication | auth_ms_ldap_server | your.ip.address.here |
| <ip> |
|
authentication | auth_ms_ldaps_capath | required |
|
|
|
authentication | auth_ms_ldaps_server | your.ip.address.here |
| <ip> |
|
authentication | auth_ms_ldaps_verify |
|
|
|
|
authentication | auth_sso_domain |
|
| <domain> |
|
OKTA OpenID specific
Section | Name | Original Value |
| Possible Values | Description |
---|
authentication | auth_method_1 | openid_connect |
|
| Set as per this entry to enable. |
authentication → auth_openid_connect | type | okta |
|
| As at April 2021, only |
okta OKTA is tested and supported |
authentication → auth_openid_connect | url | https://YOUR_SUBDOMAIN.okta.com/oauth2/default/v1/token |
|
| You should replace YOUR_SUBDOMAIN with the subdomain provided by OKTA. |
authentication → auth_openid_connect | password | password |
|
| OKTA specific (do not change). |
authentication → auth_openid_connect | test_error | error_description |
|
| OKTA specific (do not change). |
authentication → auth_openid_connect | test_success | access_token |
|
| OKTA specific (do not change). |
authentication → auth_openid_connect | username | username |
|
| OKTA specific (do not change). |
authentication → auth_openid_connect → post | client_id | YOUR_CLIENT_ID |
|
| You should replace YOUR_CLIENT_ID with the client id provided by OKTA. |
authentication → auth_openid_connect → post | client_secret | YOUR_CLIENT_SECRET |
|
| You should replace YOUR_CLIENT_SECRET with the client secret provided by OKTA. |
authentication → auth_openid_connect → post | grant_type | password |
|
| OKTA specific (do not change). |
authentication → auth_openid_connect → post | scope | openid |
|
| OKTA specific (do not change). |
authentication → auth_openid_connect → post | password |
|
|
| Do not set. |
authentication → auth_openid_connect → post | username |
|
|
| Do not set. |
authentication → auth_openid_connect → headers | accept | application/json |
|
| OKTA specific (do not change). |
authentication → auth_openid_connect → headers | content_type | application/x-www-form-urlencoded |
|
| OKTA specific (do not change). |
Core
Some core web application settings.
...
Section | Name | Original Value |
| Possible Values | Description |
---|
email | mail_domain | yourdomain.com |
| <domain> |
|
email | mail_from | yourmailname@yourdomain.com |
| <email> | email | mail_password | your_password | <password> |
|
email | mail_server | smtp.yourdomain.com |
| <fqdn> |
|
email | mail_server_port | 25 |
| <integer> |
|
email | mail_subject_prefix | [automatic] |
|
|
|
email | mail_use_tls | true |
| true, false |
|
email | mail_user | your_user_account@your_domain.com |
| <username> | Used for SMTP authentication. Leave empty to skip authentication |
email | mail_password | your_password |
| <password> | Used for SMTP authentication. Leave empty to skip authentication |
Icons
Section | Name | Original Value |
| Possible Values | Description |
---|
icons | alert_critical | <omk_url_base>/icons/alert_critical.png |
| <relative filepath> |
|
icons | alert_degraded | <omk_url_base>/icons/alert_warning.png |
| <relative filepath> |
|
icons | alert_fatal | <omk_url_base>/icons/alert_critical.png |
| <relative filepath> |
|
icons | alert_major | <omk_url_base>/icons/alert_major.png |
| <relative filepath> |
|
icons | alert_minor | <omk_url_base>/icons/alert_minor.png |
| <relative filepath> |
|
icons | alert_normal | <omk_url_base>/icons/alert_normal.png |
| <relative filepath> |
|
icons | alert_reachable | <omk_url_base>/icons/alert_normal.png |
| <relative filepath> |
|
icons | alert_unknown | <omk_url_base>/icons/alert_unknown.png |
| <relative filepath> |
|
icons | alert_unreachable | <omk_url_base>/icons/alert_critical.png |
| <relative filepath> |
|
icons | alert_warning | <omk_url_base>/icons/alert_warning.png |
| <relative filepath> |
|
...