The following is summary of the alfresco-global.properties that can be viewed and changed in a JMX client.
Note: Be aware that any changes you make to attributes/properties in the live system are written
to the database. The next time that Content Services starts, these values will take
precedence over any values specified in properties files, for example,
alfresco-global.properties.
alfresco.authentication.allowGuestLogin | Specifies whether to allow guest access. |
authentication.chain | Specifies the authentication chain. |
synchronization.autoCreatePeopleOnLogin | Specifies whether to create a user with default properties when a user is successfully authenticated, who does not yet exist in Content Services, and was not returned by a differential sync (if enabled with the specified property). The default is true. Setting this to false allows you to restrict Content Services to a subset of those users who could be authenticated by LDAP; only those created by synchronization are allowed to log in. You can control the set of users in this more restricted set by overriding the user query properties of the LDAP authentication subsystem |
synchronization.import.cron | Specifies a cron expression defining when the scheduled synchronization job should run, by default at midnight every day. |
synchronization.loggingInterval | Specifies the number of user or group entries the synchronization subsystem will process before logging progress at INFO level. If you have the following default entry in log4j2.properties:logger.alfresco-repo-security-sync.name=org.alfresco.repo.security.sync logger.alfresco-repo-security-sync.level=infoThe default is 100. |
synchronization.syncOnStartup | Specifies whether to trigger a differential sync when the subsystem starts up. The default is true. This ensures that when user registries are first configured, the bulk of the synchronization work is done on server startup, rather than on the first login. |
synchronization.syncWhenMissingPeopleLogIn | Specifies whether to trigger a differential sync when a user is successfully authenticated who does not yet exist in Content Services. The default is true. |
synchronization.synchronizeChangesOnly | Specifies if the scheduled synchronization job is run in differential mode. The default is false, which means that the scheduled sync job is run in full mode. Regardless of this setting a differential sync can still be triggered when a user is successfully authenticated who does not yet exist in Content Services. |
synchronization.workerThreads | Specifies the number of worker threads. For example, 2. |
filesystem.acl.global.defaultAccessLevel | Specifies the default access level. Directly names the access control level (None, Read or Write) that applies to requests that are not in scope of any other access control. Note that it’s not valid to use the value None without defining other access controls. |
filesystem.acl.global.domainAccessControls | Specifies the set of access controls with domain scope. This is a composite property whose value should be a comma-separated list of domain names. To define the access level for one of the listed domains, use the property filesystem.acl.global.domainAccessControls.value.<domain>.accessType.The example below defines Read level access for DOMAIN1 and Write level access for DOMAIN2.<brfilesystem.acl.global.domainAccessControls=DOMAIN1,DOMAIN2 filesystem.acl.global.domainAccessControls.value.DOMAIN1.accessType=Read filesystem.acl.global.domainAccessControls.value.DOMAIN2.accessType=Write |
filesystem.acl.global.protocolAccessControls | Specifies the set of access controls with protocol scope. This is a composite property whose value should be a comma-separated list of access control names.To define the access level for a named access control and the set of protocols to which it applies, use the properties:filesystem.acl.global.protocolAccessControls.value.<Name>.accessType<br> filesystem.acl.global.protocolAccessControls.value.<Name>.checkListProtocols can include NFS and FTP.The example below defines Read level access for NFS and Write level access for FTP.filesystem.acl.global.protocolAccessControls=nfs,ftp filesystem.acl.global.protocolAccessControls.value.nfs.accessType=Read filesystem.acl.global.protocolAccessControls.value.nfs.checkList=NFS filesystem.acl.global.protocolAccessControls.value.others.accessType=Write filesystem.acl.global.protocolAccessControls.value.others.checkList=FTP |
filesystem.acl.global.userAccessControls | Specifies the set of access controls with user scope. This is a composite property whose value should be a comma-separated list of user names.To define the access level for one of the listed users, use the property filesystem.acl.global.userAccessControls.value.<user>.accessType.The example below defines Read level access for user1 and Write level access for user2.filesystem.acl.global.userAccessControls=user1,user2 filesystem.acl.global.userAccessControls.value.user1.accessType=Read filesystem.acl.global.userAccessControls.value.user2.accessType=Write |
ftp.enabled | Enables or disables the FTP server. |
ftp.ipv6.enabled | Enables or disables the IPv6 FTP server. |
ftp.port | Specifies the port that the FTP server listens for incoming connections on. Defaults to port 21. |
imap.config.home.folderPath | Specifies the default locations for the IMAP mount point. For example, Imap Home. |
imap.config.home.rootPath | Specifies the default location for the IMAP mount point. For example, /${spaces.company_home.childname}. |
imap.config.home.store | Specifies the default location for the IMAP mount point. For example, ${spaces.store}. |
imap.config.ignore.extraction | Defines whether or not attachments are extracted. |
imap.config.server.mountPoints | Specifies the list of mount points. For example, AlfrescoIMAP. |
imap.server.enabled | Enables or disables the IMAP server. This is set to false, by default. |
imap.server.host | Specifies the host for the IMAP server. |
imap.server.port | Specifies the port number for the IMAP server. For example, 143. |
imap.config.server.mountPoints.value.AlfrescoIMAP.modeName | Specifies the AlfrescoIMAP mount point access mode name. For example, MIXED. |
imap.config.server.mountPoints.default.rootPath | Specifies the root path for the mount point. |
imap.config.server.mountPoints.value.AlfrescoIMAP.mountPointName | Specifies the mount point name. |
imap.config.server.mountPoints.default.store | Specifies the default store for the mount point. |
server.allowedusers | A comma-separated list of users who are allowed to log in. Leave empty if all users are allowed to log in. |
server.maxusers | The maximum number of users who are allowed to log in or -1 if there is no limit. |
server.transaction.allow-writes | A Boolean property that when true indicates that the repository will allow write operations (provided that the license is valid). When false the repository is in read-only mode. |