PowerDesigner Portal Server Settings

The PowerDesigner Portal provides a number of server settings that you can modify on the Settings page.

General

The following general settings are available. You must restart the PowerDesigner Portal for changes to take effect:

Setting

Description

Name

Specifies the name of the repository.

Comment

Describes the repository.

Session timeout (min)

Specifies the amount of time that the browser session is permitted to be idle before it is automatically logged out.

Max users

Specifies the maximum number of users that may connect to the PowerDesigner Portal at any one time.

Object cache size (MB)

Specifies the amount of memory assigned to object caching. The default is 128MB. Increasing this value will improve performance.

LDAP

The following LDAP settings are available and can be set here or through PowerDesigner (see Connecting to an LDAP Server for User Authentication). You must restart the PowerDesigner Portal for changes to take effect:

Parameter

Description

Server type
Specifies the type of the LDAP server and sets default values for the server. The following types are available:
  • Active Directory - if your environment supports anonymous binding, you may be able to connect without further configuration. Click the Test Connection button and follow the instructions on the dialog.
  • Netscape Directory Server
  • OpenLDAP
  • Oracle Directory Server
  • Other
If you edit any parameters and want to revert to the defaults, click the Default Settings button.
Provider URL
Specifies the URL for the LDAP provider. By default, for Active Directory, PowerDesigner will automatically detect the nearest LDAP server and use this for authentication, initializing this field to:
LDAP://_ldap.domain:389
For other servers, this field is initialized to:
LDAP://ldap.domain:389
and you should replace ldap with the name or IP address of your LDAP server.
Use Secure Socket Layer (SSL)
Instructs PowerDesigner to connect to the LDAP server using SSL, changing the LDAP provider port to the standard secure 636. If you have deployed the PowerDesigner Portal, you must obtain and register a certificate authority certificate in the Java installation (see Importing an LDAPS Certificate for the PowerDesigner Portal).
Note: In most corporate environments using Active Directory, the necessary certificate is already registered on client machines. If this is not the case, or for other LDAPS servers, users installing PowerDesigner will need to contact their administrator to obtain a certificate and use \Windows\System32\certmgr.msc to register it. Right-click Trusted Root Certification Authorities and select All Tasks > Import, then follow the wizard instructions.
Default search base
Specifies the level at which the query begins its search for users in the LDAP tree. By default this is initialized to the domain components (DCs) of the LDAP server. For example:
dc=sybase, dc=com
You could include the location of the User directory such as OU=Users, dc=devpd, dc=local . If the location of the User directory is not specified here, then you must include it in the Authentication Search Base.
Anonymous bind
[default] Specifies that the LDAP server supports anonymous access. If you deselect this parameter, you must specify a bind user distinguished name (DN) and password for an account that has permissions to query the LDAP server.
Note: If the Bind user DN is in the same DN as the Authentication search base then you can simply enter the user id for the search. Otherwise, you must enter the full DN for that account. For example, if the Default search base is ou=people,dc=Onebridge,dc=qa, and you have a user cn=csitest,cn=users,dc=Onebridge,dc=qa, then the Bind DN must be cn=csitest,cn=users,dc=Onebridge,dc=qa.
Auto-create user accounts in repository

Specifies that any users corresponding to the LDAP authentication search filter can connect to the repository, and will have an account created for them in the repository when they do so. If you do not select this option, then an administrator must create an account for each user before they can connect.

Search filter
Specifies the LDAP query that selects users for authentication. By default this is initialized to (for Active Directory):
(&(objectClass=person)(userPrincipalName={uid}))
and for other servers:
(&(objectClass=person)(cn={uid}))
To determine an alternative filter, you must know the properties of the users defined in the Active Directory, and which property (for example, name or samAccountName) is being used as the login name.
Search base

Specifies the location of the User list in your LDAP server. By default this is initialized to the same value as the Default search base. If the default search base does not include your users you must specify an appropriate search base here. Users may be in a common node such as cn=Users or an organization unit such as OU=Users. To determine the correct search base, you should use an LDAP browser to look at the full distinguished name of a user. Note that your Bind DN may be a user in a different node in the tree than general users so it is very important that you have the correct information for each.

Search scope
Specifies the scope of the authentication search. You can choose between:
  • subtree - [default] the search begins at the level of the Search base and also searches any subnodes.

  • onelevel - only the level specified in the the Search base is searched

Authentication method
Specifies the method to use for authentication requests. You can choose between:
  • simple - [default] clear text authentication. If SSL is enabled, then the password will be encrypted.

  • DIGEST-MD5 - hashed password authentication. If you select this option, you must specify a digest format.

Logging

For information about the Logging settings, see PowerDesigner Portal Client Settings.

Database

The following database settings are available. You must restart the PowerDesigner Portal for changes to take effect:

Setting

Description

Database type

Specifies the type of DBMS that hosts the repository.

Database driver

Specifies the driver used to connect to the repository database.

Host

[required] Specifies the name of the host machine for the repository database.

Port

[required] Specifies the port number of the host machine through which the repository database is available.

Database name

Specifies the name of the repository database.

User name

Specifies the database user name that the repository uses to access the DBMS.

Password

Specifies the database password that the repository uses to access the DBMS.

Isolation level

Specifies the isolation level used to isolate transactions in a multi-user environment. By default, level 1 is used for ASA databases and level 2 for ASE. See your DBMS documentation for information about the behavior of each level in your environment.

Initial pool size

Specifies the initial number of connections in the connection pool. The default is 1.

Min idle

Specifies the minimum connection idle time.

Max idle

Specifies the maximum connection idle time.

Max wait (msec)

Specifies the maximum connection wait time.

Max active

Specifies the maximum permitted number of connections to the database.

Charset

[ASE only] Specifies the character set used by the database.

Search

The following search settings are available. You must restart the PowerDesigner Portal for changes to take effect:

Setting

Description

Index Information

Specifies the last time the search index was rebuilt, the next time it will be built, its location, size, and the number of attributes indexed.

Index rebuild interval

Specifies the interval between rebuilds of the search index in minutes. By default, the index is rebuilt every 120 minutes. Click the Rebuild Index button to perform an immediate rebuild.

License

The following license server settings are available. You must restart the PowerDesigner Portal for changes to take effect:

Setting

Description

Host

Specifies the name of the SySAM license server that serves licenses to PowerDesigner Portal users.

Port

Specifies the port to use to access the license server.

Security

The following password policy settings are available and can be set here or through PowerDesigner (see Defining a Password Policy). You must restart the PowerDesigner Portal for changes to take effect:

Setting Description
Password length Specifies the minimum and maximum permitted length of passwords. This option cannot be disabled. The minimum minimum length for a password is 6 characters.
Password must contain Specifies that passwords must contain at least one of each of the character types selected.
Disallow reuse of previous x passwords Prevents users from reusing the specified number of old passwords.
Enforce changing of passwords after x days Requires that users change their passwords after the specified number of days.
Block inactive users after x days without connection Blocks users if they try to log in after the specified number of days of inactivity.
Temporarily block users for x minutes after y failures to log in Blocks users for the specified number of minutes if they submit an invalid combination of username and password the specified number of times.
Temporary passwords issued by an administrator are valid for x days Specifies the period for which temporary passwords (which are issued when a user is created or unblocked) are valid. Users attempting to use a temporary password after this time will be blocked.

Notification

The following change notification settings are available and can be set here or through PowerDesigner (see Connecting to an SMTP Server for Notifications):

Setting

Description

SMTP host

Specifies the host name of the SMTP server used to send mail.

SMTP port

Specifies the port number of the SMTP server used to send mail.

Sender's email address

Specifies the email address from which to send mails.

Use Secure Socket Layer (SSL)

Specifies to connect to the SMTP mail server through SSL.

Server requires authentication

Specifies that the SMTP server requires authentication. If you select this option, then you must specify an SMTP account and password, and can instruct PowerDesigner to use Secure Password Authentication (SPA).

In addition, you can control the content of notification emails by selecting items in the Mail template list and overriding the default text associated with them.