Configuring the IDPublisher.properties File

The IDPublisher.properties file is used to configure the behavior between ActivID CMS and pivCLASS IDPublisher. This file enables you to specify which ActivID CMS events should be sent to IDPublisher for updating the PACS.

The following figure displays the detailed workflow of notifications from ActivID CMS events to IDPublisher:

Workflow of Notifications from ActivID CMS Events to IDPublisher

 

To configure the IDPublisher.properties file, perform the following tasks:

  1. Open the IDPublisher.properties file located at Credential Management System\Shared Files\IDPublisher directory.

  2. Update the attributes as per your requirement using the attribute listed in the following table.

    ‘IDPublisher.properties’ Attributes

    Attribute

    Description

    Default Value

    # Usage

    * signifies default value

     

    # events*

    A list of events that are acted upon. Refer to the HID ActivID Event Notification SPI Developer Guide for a complete list of valid numbers.

    • 10001 is activate

    • 10006 is terminate

    • 10009 is suspend

    • 10010 is resume

    events.provision

    List of event numbers to trigger a provision.

    10001

    events.deprovision

    List of event numbers to trigger a de-provision.

    10006

    events.suspend

    List of event numbers to trigger a de-provision.

    10009

    events.resume    

    List of event numbers to trigger a de-provision.

    10010

    service.url

    IDPublisher URL and port.

    For example: http://192.168.229.10:8080/IDPublish

    http://10.16.8.147:8080/IDPublish

    enroll.cardpolicies

    List of device policies that you want to be enrolled into IDPublisher.  If you leave the list blank, all ActivID CMS device policies are available.

    For example: "G&D 144K - PIV-I","test 123"

     

    events.ignorefailures

    Set this to True or False to have ActivID CMS ignore (True) or notice (False) the errors that are encountered when talking to IDPublisher.  Set this to True if you do not want to stop the card workflow for any errors.

    True

    accesslist.separator

    The separator to use for the access rights list elements.

    ||

    idpublisher.enroll.attribute

     

    piv:idpubenroll

    idpublisher.access.rights.attribute

     

    piv:idpubaccessrights

    idpublisher.multipacs.guids.attribute

     

    piv:pacsguids

    idpublisher.multipacs.enabled

     

    False

    idpublisher.accessrights.enabled

     

    False

    idpublisher.enabled

     

    True

    idpublisher.keystore_file

     

    ../Credential Management System/Shared Files/IDPublisher/IdPublisherKeyStore.jks

    idpublisher.truststore_file

     

    ../Credential Management System/Shared Files/IDPublisher/IdPublisherTrustStore.jks

  3. Save the IDPublisher.properties file.