configure
Use this plan to change some of the configuration settings for Security Compliance Management.
After running this plan you are prompted for the configuration settings to change and only the affected services are restarted.
Usage
Copy
bolt plan run complyadm::configureParameters
This plan does not have any parameters.
Configuration settings
You have the option to change the following settings using this plan:
| Setting | Description | Default |
|---|---|---|
| Assessor version | Set the version of the Assessor to use. | latest
|
| Log level | Sets the logging level. | info
|
| mTLS | Configure the mTLS certificate to use for your Puppet Enterprise host. | |
| TLS | Configure your TLS certificate to provide an HTTPS connection between your browser and SCM. | |
| SSO session timeout | Sets the length of time in seconds you can be idle in the SCM UI before you are logged out the next time your access token resets. | 1800 seconds |
| Access token lifespan | Sets the length of time in seconds until your access token resets. | 300 seconds |
| Introspection | Introspection blocked for GraphQL. | true
|
| Proxy TLS handshake timeout | Sets the proxy TLS handshake timeout to the specified duration, can be [s]econds, [m]inutes, or [h]ours. | 10s |
| Proxy idle conn timeout | Sets the proxy idle conn timeout to the specified duration, can be [s]econds, [m]inutes, or [h]ours. | 90s |
| Proxy response header timeout | Sets the proxy response header timeout to the specified duration, can be [s]econds, [m]inutes, or [h]ours. | 9s |
| Max graphql batch size | Sets the amount of batching allowed per GraphQL request. If this number is set to 0, batching is disallowed. | 10 |
| Max graphql requests limit | Sets the number of GraphQL requests allowed within the amount of time set by Max graphql requests within. Any request exceeding this value within the specified time period is denied. For example, the 61st request in a 60 second period would be denied, assuming the default values. | 60 |
| Max graphql requests within | Sets the amount of time in seconds that the specified number of requests are allowed. Any request exceeding this value within the specified time period is denied. | 60 |