No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

eSight V300R010C00 Maintenance Guide 07

Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
Collaboration Management

Collaboration Management

tp.webserver.roa.inst.xml

Function

The configuration file configures the ROA port for reporting eSight TP alarms.

Path

eSight installation directory/AppBase/etc/iemp.framework/tp.webserver.roa.inst.xml

Description
Table 9-120 Configuration items in tp.webserver.roa.inst.xml

Parameter

Description

Setting

Effective Mode

tprest/TPAlarmHttpsPort/port

Indicates the port number of the HTTPS service.

Data type: integer

Value range: > 0

Default value: 11942

Restart

tprest/TPAlarmHttpsPort/ssl.keystore.password

Indicates the password of the certificate library corresponding to the HTTPS service.

Data type: character string

Value range: Depends on the certificate library password changed by users.

Default value: 1047bf9e6c26b68e2a93db678878b8384b1b805f88ac8597a3d5d52e2481b81a

Modification method: For details, see Changing the Collaborations Passwords.

Restart

tprest/TPAlarmHttpsPort/ssl.include.ciphers

Indicates the algorithm suite list supported by the SSL corresponding to the HTTPS service.

NOTE:
  • Multiple algorithm suites are separated by semicolons (;) and are sorted by priority in descending order. To use other encryption algorithm suites, you need to manually add them.

Data type: character string

Value range: encryption suite represented by character strings.

Default value:

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256

Restart

Precautions

Do not modify the configuration file unless necessary.

If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

<?xml version="1.0" encoding="UTF-8" standalone="no"?><webservers>

<webserver name="tprest">

<property name="threadpool.thread.max" value="100"/>

<property name="threadpool.queue.max" value="3000"/>

<property name="roa.server.ip.white.list.enable" value="false" />

<connectors>

<connector name="TPAlarmHttpsPort" type="https">

<property name="ip" value="@{ENT_MED_NODE_IP}"/>

<property name="port" value="11942"/>

<property name="ssl.keystore.path" value="etc/certificate/uccServerKeyStore"/>

<property name="ssl.keystore.password" value="9d7961bc8af54d05ce509e03b13ffce3abc7587373e7719b62555fd5aff9908d"/>

<property name="ssl.include.ciphers" value="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256"/>

</connector>

</connectors>

</webserver>

</webservers>

webserver.roa.inst.xml

Function

The configuration file configures the TR069 ROA extended port on eSight.

Path

eSight installation directory/AppBase/etc/iemp.framework/webserver.roa.inst.xml

Description
Table 9-121 Configuration items in webserver.roa.inst.xml

Parameter

Description

Setting

Effective Mode

ipphone/FileServerHttpSport/ssl.keystore.password

Indicates the password of the certificate library corresponding to the HTTPS service on the file server.

Data type: character string

Value range: Depends on the certificate library password changed by users.

Default value: 88f57e0e8480160b0b3bbcc64189a202e6d3727ce456bf4f990af9b477d3e257

Modification method: For details, see Changing the Collaborations Passwords.

Restart

ipphone/FileServerHttpSport/ssl.include.ciphers

Indicates the algorithm suite list supported by the SSL corresponding to the HTTPS service on the file server.

NOTE:
  • Multiple algorithm suites are separated by semicolons (;) and are sorted by priority in descending order. To use other encryption algorithm suites, you need to manually add them.
  • By default, eSight clients can be accessed through the TLSv1.1 and TLSv1.2 protocols. The CBC encryption algorithm used by the TLSv1 protocol is vulnerable to attacks, especially the BEAST attack. It is recommended that the CBC encryption algorithm suite be disabled.

Data type: character string

Value range: encryption suite represented by character strings.

Default value:

TLS_RSA_WITH_AES_128_CBC_SHA;TLS_RSA_WITH_AES_256_CBC_SHA;TLS_RSA_WITH_AES_128_CBC_SHA256;TLS_RSA_WITH_AES_256_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256

NOTE:

In eSight V300R010C00SPC500, the default value is TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256.

Restart

certificate/TLSServerHttpSport/ssl.keystore.password

Indicates the password of the certificate library corresponding to the HTTPS service on the certificate file server.

Data type: character string

Value range: Depends on the certificate library password changed by users.

Default value: 88f57e0e8480160b0b3bbcc64189a202e6d3727ce456bf4f990af9b477d3e257

Modification method: For details, see Changing the Collaborations Passwords.

Restart

certificate/TLSServerHttpSport/ssl.include.ciphers

Indicates the algorithm suite list supported by the SSL corresponding to the HTTPS service on the certificate file server.

NOTE:
  • Multiple algorithm suites are separated by semicolons (;) and are sorted by priority in descending order. To use other encryption algorithm suites, you need to manually add them.
  • By default, eSight clients can be accessed through the TLSv1.1 and TLSv1.2 protocols. The CBC encryption algorithm used by the TLSv1 protocol is vulnerable to attacks, especially the BEAST attack. It is recommended that the CBC encryption algorithm suite be disabled.

Data type: character string

Value range: encryption suite represented by character strings.

Default value:

TLS_RSA_WITH_AES_128_CBC_SHA;TLS_RSA_WITH_AES_256_CBC_SHA;TLS_RSA_WITH_AES_128_CBC_SHA256;TLS_RSA_WITH_AES_256_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256

NOTE:

In eSight V300R010C00SPC500, the default value is TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256.

Restart

tr069/Tr069HttpSport/ssl.keystore.password

Indicates the password of the certificate library corresponding to the HTTPS service based on the TR069 protocol.

Data type: character string

Value range: Depends on the certificate library password changed by users.

Default value: 88f57e0e8480160b0b3bbcc64189a202e6d3727ce456bf4f990af9b477d3e257

Modification method: For details, see Changing the Collaborations Passwords.

Restart

tr069/Tr069HttpSport/ssl.include.ciphers

Indicates the algorithm suite list supported by the SSL corresponding to the HTTPS service based on the TR069 protocol.

NOTE:
  • Multiple algorithm suites are separated by semicolons (;) and are sorted by priority in descending order. To use other encryption algorithm suites, you need to manually add them.
  • By default, eSight clients can be accessed through the TLSv1.1 and TLSv1.2 protocols. The CBC encryption algorithm used by the TLSv1 protocol is vulnerable to attacks, especially the BEAST attack. It is recommended that the CBC encryption algorithm suite be disabled.

Data type: character string

Value range: encryption suite represented by character strings.

Default value:

TLS_RSA_WITH_AES_128_CBC_SHA;TLS_RSA_WITH_AES_256_CBC_SHA;TLS_RSA_WITH_AES_128_CBC_SHA256;TLS_RSA_WITH_AES_256_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256

NOTE:

In eSight V300R010C00SPC500, the default value is TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256.

Restart

tr069DOUBLE/Tr069HttpSport/ssl.keystore.password

Indicates the password of the certificate library corresponding to the bidirectionally authenticated HTTPS service based on the TR069 protocol.

Data type: character string

Value range: Depends on the certificate library password changed by users.

Default value: 88f57e0e8480160b0b3bbcc64189a202e6d3727ce456bf4f990af9b477d3e257

Modification method: For details, see Changing the Collaborations Passwords.

Restart

tr069DOUBLE/Tr069HttpSport/ssl.include.ciphers

Indicates the algorithm suite list supported by the SSL corresponding to the bidirectionally authenticated HTTPS service based on the TR069 protocol.

NOTE:
  • Multiple algorithm suites are separated by semicolons (;) and are sorted by priority in descending order. To use other encryption algorithm suites, you need to manually add them.
  • By default, eSight clients can be accessed through the TLSv1.1 and TLSv1.2 protocols. The CBC encryption algorithm used by the TLSv1 protocol is vulnerable to attacks, especially the BEAST attack. It is recommended that the CBC encryption algorithm suite be disabled.

Data type: character string

Value range: encryption suite represented by character strings.

Default value:

TLS_RSA_WITH_AES_128_CBC_SHA;TLS_RSA_WITH_AES_256_CBC_SHA;TLS_RSA_WITH_AES_128_CBC_SHA256;TLS_RSA_WITH_AES_256_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256

NOTE:

In eSight V300R010C00SPC500, the default value is TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256.

Restart

tr069DOUBLE/Tr069HttpSport/ssl.truststore.password

Indicates the password of the trusted certificate corresponding to the bidirectionally authenticated HTTPS service based on the TR069 protocol.

Data type: character string

Value range: Depends on the certificate library password changed by users.

Default value: @01020000000041c1786e09d98303fdc6283f326ab4c93bdaff66957ba1ceccf2160d17f527cb

Modification method: For details, see Changing the Collaborations Passwords.

Restart

tr069SBC/Tr069HttpSport/port

Indicates the port number of the HTTPS service of the TR069 protocol.

Data type: integer

Value range: > 0

Default value: 32237

Restart

tr069SBC/Tr069HttpSport/ssl.keystore.password

Indicates the password of the certificate library corresponding to the HTTPS service based on the TR069 protocol.

Data type: character string

Value range: Depends on the certificate library password changed by users.

Default value: 88f57e0e8480160b0b3bbcc64189a202e6d3727ce456bf4f990af9b477d3e257

Modification method: For details, see Changing the Collaborations Passwords.

Restart

tr069SBC/Tr069HttpSport/ssl.include.ciphers

Indicates the algorithm suite list supported by the SSL corresponding to the HTTPS service based on the TR069 protocol.

NOTE:
  • Multiple algorithm suites are separated by semicolons (;) and are sorted by priority in descending order. To use other encryption algorithm suites, you need to manually add them.

Data type: character string

Value range: encryption suite represented by character strings.

Default value:

TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256

Restart

Precautions

Do not modify the configuration file unless necessary.

If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

<xml version="1.0" encoding="UTF-8" standalone="no"?><webservers>

<webserver name="ipphone">

<connectors>

<connector name="FileServerHttpSport" type="https">

<property name="ssl.keystore.password" value="88f57e0e8480160b0b3bbcc64189a202e6d3727ce456bf4f990af9b477d3e257" />

<property name="ssl.include.ciphers" value="TLS_RSA_WITH_AES_128_CBC_SHA;TLS_RSA_WITH_AES_256_CBC_SHA;TLS_RSA_WITH_AES_128_CBC_SHA256;TLS_RSA_WITH_AES_256_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256" />

</connector>

</connectors>

</webserver>

<webserver name="certificate">

<connectors>

<connector name="TLSServerHttpSport" type="https">

<property name="ssl.keystore.password" value="88f57e0e8480160b0b3bbcc64189a202e6d3727ce456bf4f990af9b477d3e257" />

<property name="ssl.include.ciphers" value="TLS_RSA_WITH_AES_128_CBC_SHA;TLS_RSA_WITH_AES_256_CBC_SHA;TLS_RSA_WITH_AES_128_CBC_SHA256;TLS_RSA_WITH_AES_256_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256" />

</connector>

</connectors>

</webserver>

<webserver name="tr069">

<connectors>

<connector name="Tr069HttpSport" type="https">

<property name="ssl.keystore.password" value="88f57e0e8480160b0b3bbcc64189a202e6d3727ce456bf4f990af9b477d3e257"/>

<property name="ssl.include.ciphers" value="TLS_RSA_WITH_AES_128_CBC_SHA;TLS_RSA_WITH_AES_256_CBC_SHA;TLS_RSA_WITH_AES_128_CBC_SHA256;TLS_RSA_WITH_AES_256_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256" />

</connector>

</connectors>

</webserver>

<webserver name="tr069DOUBLE">

<connectors>

<connector name="Tr069HttpSport" type="https">

<property name="ssl.keystore.password" value="88f57e0e8480160b0b3bbcc64189a202e6d3727ce456bf4f990af9b477d3e257"/>

<property name="ssl.include.ciphers" value="TLS_RSA_WITH_AES_128_CBC_SHA;TLS_RSA_WITH_AES_256_CBC_SHA;TLS_RSA_WITH_AES_128_CBC_SHA256;TLS_RSA_WITH_AES_256_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256" />

</connector>

</connectors>

</webserver>

<webserver name="tr069SBC">

<connectors>

<connector name="Tr069HttpSport" type="https">

<property name="port" value="32237"/>

<property name="ssl.keystore.password" value="88f57e0e8480160b0b3bbcc64189a202e6d3727ce456bf4f990af9b477d3e257"/>

<property name="ssl.include.ciphers" value="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA;TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256;TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA256" />

</connector>

</connectors>

</webserver>

</webservers>

upgrade.properties

Function

The configuration file configures basic parameters of IP phones.

Path

eSight installation directory/AppBase/etc/tms/upgrade.properties

Description
Table 9-122 Configuration items in upgrade.properties

Parameter

Description

Setting

Effective Mode

http.server.ipaddr

Indicates the eSight IP address distributed to IP phones for scanning or upgrading IP phones.

Data type: IP address

Value range: one of the eSight IP addresses

Default Value: IP address of the host on which eSight is installed

Immediately (60s)

Precautions

Do not modify the configuration file unless necessary.

When configuring the network-wide listening function for eSight, you need to change the IP address of eSight to an IP address that can be used to communicate with IP phones.

Configuration Example

http.server.ipaddr=192.168.3.50

amc_address.properties

Function

The configuration file configures parameters for communication with the ICBC NMS through eSight northbound interface.

Path

eSight installation directory/AppBase/etc/uc/amc_address.properties

Description
Table 9-123 Configuration items in amc_address.properties

Parameter

Description

Setting

Effective Mode

local_port

Indicates the port through which eSight sends local UDP packets.

Data type: integer

Value range: 0–65535

Default value: null

Restart

amc_ip

Indicates the IP address of ICBC northbound NMS for receiving alarms.

Data type: character string

Value range: IPv4 address

Default value: null

Restart

amc_port

Indicates the port number of ICBC northbound NMS for receiving alarms.

Data type: integer

Value range: 0–65535

Default value: null

Restart

Precautions

Manually modify the configuration items according to the eSight installation and deployment scenarios. Restart eSight for the modifications to take effect.

Configuration Example

amc_ip=10.179.89.218

amc_port=8585

local_port=9010

ca.config

Function

The configuration file configures parameters for the eSight certification authority (CA) center.

Path

eSight installation directory/AppBase/etc/uc/capf/ca.config

Description
Table 9-124 Configuration items in ca.config

Parameter

Description

Setting

Effective Mode

use_challenge_password

Specifies whether to enable the challenge code.

Data type: boolean

Value range:

  • true: Enable the challenge code.
  • false: Disable the challenge code.

Default value: null

Restart

url

Indicates the NDES URL.

Data type: character string

Value range: valid URL

Default value: null

Restart

user_name

Indicates the user name that is used to log in to the CA center.

Data type: character string

Value range: valid user name for logging in to the CA center

Default value: null

Restart

password

Indicates the password that is used to log in to the CA center. The password is encrypted using the encryption tool provided by eSight.

Data type: character string

Value range: valid password for logging in to the CA center

Default value: null

Modification method:

Choose Resource > Collaboration Resource from the main menu. Choose Terminal Device Management > System Configuration from the navigation tree on the left, and set Password for logging in to the CA center under CA Center URL Configuration. Click OK.

Restart

auto_delete

Specifies whether to enable the automatic deletion of certificates.

Data type: boolean

Value range:

  • true: Automatically delete certificates.
  • false: Manually delete certificates.

Default value: false

Restart

crl_url

Indicates the URL of the certificate revocation list.

Data type: character string

Value range: valid URL

Default value: null

Restart

admin_url

Obtains the URL of the challenge code.

Data type: character string

Value range: valid URL

Default value: null

Restart

Precautions

Do not modify the configuration file unless necessary.

If you modify the configuration items using the GUI tool, the modifications take effect immediately. If you manually modify the configuration items, restart eSight to make the modifications take effect.

Configuration Example

url=https://10.10.10.10/certsrv/mscep

crl_url=http://10.10.10.10/certenroll/cert-Z00225197XY-CA+.crl

user_name=cert\Administrator

password=f25975e260f3153f6d8e872f11b02d11a772cb9ebf4004665fe373bfa2e3e3ead4d574b03546286b4d96a93944513781

use_challenge_password=false

admin_url=https://10.10.10.10/certsrv/mscep_admin

auto_delete=false

capf.config

Function

The configuration file configures parameters for the interconnection between eSight and the CA center.

Path

eSight installation directory/AppBase/etc/uc/capf/capf.config

Description
Table 9-125 Configuration items in capf.config

Parameter

Description

Setting

Effective Mode

keystore_pass

Indicates the certificate password that is encrypted using the encryption tool provided by eSight.

Data type: character string

Value range: ciphertext encrypted using the encryption tool provided by eSight

Default value: b750597efa12f344a1f47b8b04721b98671f17f69f98136e0c9165bbe4e75207

Modification method: For details, see Changing the Collaborations Passwords.

Restart

update_time

Indicates the time to automatically detect certificates. If certificates that are about to expire are detected, requests are sent to the CA center to apply for new certificates.

Data type: character string

Value range: Any time

Default value: 1:00

Restart

days_before_expire

Indicates the days in advance of the expiration date that the certificate is updated. This parameter has been optimized. You are not advised to modify it.

Data type: integer

Value range: 1–30. The value 7 is recommended.

Default value: 7

Restart

concurrent_number

Indicates the number of concurrent requests sent to the CA center. This parameter has been optimized. You are not advised to modify it.

Data type: integer

Value range: 1–10. The value 5 is recommended.

Default value: 5

Restart

revoke_time

Checks the time to revoke certificates.

Data type: character string

Value range: Any time

Default value: 2:00

Restart

Precautions

Do not modify the configuration file unless necessary.

If you modify the configuration items using the GUI tool, the modifications take effect immediately. If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

#the time check whether certificate will be expired in {days_before_expire} days

update_time=1:00

#the time check whether certificate has been revoked

revoke_time=2:00

#the days before certificate expired, when it comes apply a new certificate

days_before_expire=7

#concurrent number when apply certificate from CA

concurrent_number=5

#store certificate and private key with this password

keystore_pass=b750597efa12f344a1f47b8b04721b98671f17f69f98136e0c9165bbe4e75207

#ftps user name used to transfer certificate when it is a distributed system

ftps_user=CapfUser

#ftps password used to transfer certificate when it is a distributed system

ftps_pass=@01020000000038b5012da3fdada9cc65b20e145683bdc324df22f530e699e6303ff798f74ab5f805f1819a41843b85ecb1ee2875e6c2

config.properties

Function

The configuration file sets basic parameters for connecting IP phones, IP PBXs, IADs, U2900s, and UMSs to eSight and managing the devices.

Path

eSight installation directory/AppBase/etc/uc/config.properties

Description
Table 9-126 Configuration items in config.properties

Parameter

Description

Setting

Effective Mode

iad.upgrade.ftp.readusername

Indicates the user name used for IAD upgrade through FTP.

If the parameter is modified, installation directory\AppBase\etc\ftpusers.properties is also updated after the restart.

Data type: character string

Value range: character string

Default value: ftpread

Restart

iad.upgrade.ftp.readpwd

Indicates the cipher text password used for the IAD upgrade through FTP.

If the parameter is modified, installation directory\AppBase\etc\ftpusers.properties is also updated after the restart.

Data type: character string

Value range: Cipher text encrypted using an encryption tool

Default value: 2e7d77997c26f401038b3d1ffeff4c89e57a81d756e9e80ba144158987dfb150b793c1243931ae155f2dc73f1148d592

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

iad.protocol.ssh.username

Indicates that eSight reads the SSH user name by default during automatic discovery.

Data type: character string

Value range: character string

Default value: root

Restart

iad.upgrade.ftp.writeusername

Indicates the FTP user name used for the IAD upgrade.

If the parameter is modified, installation directory\AppBase\etc\ftpusers.properties is also updated after the restart.

Data type: character string

Value range: character string

Default value: ftpwrite

Restart

iad.upgrade.ftp.writepwd

Indicates the cipher text password used for upgrade of the IAD through FTP.

If the parameter is modified, installation directory\AppBase\etc\ftpusers.properties is also updated after the restart.

Data type: character string

Value range: Cipher text encrypted using an encryption tool

Default value: 53b3cc8cc5a31e917e312e1bd84cee072551e2cc693c3656a7615e5318d517943abbc2a95bc701be0f6c3666cceb7fa0

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

ippbx.relaytrace.start.flag

Indicates whether trunk tracing tasks are started by default.

Data type: boolean

Value range: true or false

Default value: false

Restart

ippbx.upgrade.ftps.FTPS_PASSWORD

Indicates the password for FTPS communication between eSight and IP PBXs.

If the parameter is modified, installation directory\AppBase\etc\ftpusers.properties is also updated after the restart.

Data type: character string

Value range: Cipher text encrypted using an encryption tool

Default value: 94b5913233efa460c88d1d0b8a2740598b8f84490e79b448af3f804b89f278ceb77b3721f45621f71561f634476fe453

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

realay.histroydata.max.size

Specifies the maximum data volume allowed to be saved in the trunk tracing historical data table.

Data type: integer

Value range: integer ranging from 1 to 200,000

Default value: 200,000

Restart

dsp.realtimedata.max.size

Specifies the maximum data volume allowed to be saved in the DSP resource tracing data table.

Data type: integer

Value range: integer ranging from 1 to 500,000

Default value: 500,000

Restart

ums.protocal.snmp.v3.authType

Indicates the default authorization protocol for UMS access.

Data type: character string

Value range: HMAC_SHA/HMAC_MD5/None

Default value: HMAC_SHA

Restart

ippbx.protocol.type

Indicates the protocol for connecting IP PBXs to eSight.

NOTE:

The Telnet protocol is risky. SSH is recommended.

Data type: character string

Value range: Ssh/Telnet

Default value: Ssh

Restart

ippbx.dsptrace.start.flag

Specifies whether to enable DSP resource statistics collection tasks by default when IP PBXs connect to eSight.

Data type: boolean

Value range: true or false

Default value: false

Restart

ippbx.upgrade.ftps.FTPS_USERNAME

Indicates the user name for FTPS communication between eSight and IP PBXs.

If the parameter is modified, installation directory\AppBase\etc\ftpusers.properties is also updated after the restart.

Data type: character string

Value range: character string

Default value: UCIPPBX

Restart

realay.histroydata.delete.num

Indicates the data volume that can be deleted for one time after data in the trunk tracing historical data table reaches the upper limit.

Data type: integer

Value range: integer ranging from 1 to 500,000

Default value: 500,000

Restart

iad.protocol.telnet.password

Indicates the default Telnet cipher text password for automatic discovery of IADs.

Data type: character string

Value range: Cipher text encrypted using an encryption tool

Default value: a20e32747bf5bb28e2b2b8560b56635efd97ff54ad8dc343b30067a0f096f7cd

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

dspTrace.histroydata.max.size

Specifies the maximum data volume allowed to be saved in the DSP resource tracing historical data table.

Data type: integer

Value range: integer ranging from 1 to 200,000

Default value: 200,000

Restart

IAD.FTPSorFTP

Specifies whether FTP or FTPS is used by the IAD file service.

NOTE:

The FTP protocol is risky. FTPS is recommended.

Data type: character string

Value range: FTP/FTPS

Default value: FTPS

Immediately

dsp.realtimedata.delete.size

Indicates the data volume that can be deleted one time after data in the DSP resource tracing real-time data table reaches the upper limit.

Data type: integer

Value range: integer ranging from 1 to 10,000

Default value: 10,000

Restart

ipphone.cpe.password

Indicates the authorization password of IP phones during communication between eSight and IP phones.

Data type: character string

Value range: Cipher text encrypted using an encryption tool

Default value: d834cea9d85525354f3bba7a82747a7d45ddfb4606e4407be657476628ffabf5

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

softcoChannelMaxBufferInSize

Indicates the maximum message volume that can be cached in the IP PBX channel.

Data type: integer

Value range: integer ranging from 10,000 to 50,000

Default value: 50,000

Restart

iad.upgrade.ftps.ftpsreadpwd

Indicates the cipher text password used for the IAD upgrade through FTPS.

Data type: character string

Value range: Cipher text encrypted using an encryption tool

Default value: 9a7aeaec763c83b4270f2c848021764588ad328675cf0aa38ed07488a21348a4e65af5d081b0535c37dee5124b801c25

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

iad.backupandrecovery.ftp.password

Indicates the cipher text password for backing up and restoring the IAD configuration file through FTP.

If the parameter is modified, installation directory\AppBase\etc\ftpusers.properties is also updated after the restart.

Data type: character string

Value range: Cipher text encrypted using an encryption tool

Default value: @01020000000006b5786aebe8cce72ce57e74d595dc43bf7c4993d44db9f1656e8de4aed8512e09993366290ffbe1050fe1bd85dbbe97

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

ippbx.ftps.enable

Specifies whether to use FTPS or TFTP for communication between eSight and IP PBXs.

NOTE:

The TFTP protocol is risky. FTPS is recommended.

Data type: boolean

Value range: true or false

Default value: true

Restart

U29.businessPort.heartBeat.period

Indicates the heartbeat interval between eSight and U2900/USM's performance and alarm ports.

Data type: integer

Value range: integer ranging from 1 to 10

Default value: 5

Restart

iad.protocol.telnet.username

Indicates the default Telnet user name for automatic IAD discovery.

Data type: character string

Value range: character string

Default value: root

Restart

vqm.data.max.size

Indicates the maximum number of voice quality records that can be saved on eSight.

Data type: integer

Value range: integer ranging from 1 to 1,000,000

Default value: 1,000,000

Restart

iad.backupandrecovery.ftps.password

Indicates the FTPS cipher text password for backing up and restoring the IAD configuration file.

Data type: character string

Value range: Cipher text encrypted using an encryption tool

Default value: @01020000000006b5786aebe8cce72ce57e74d595dc43bf7c4993d44db9f1656e8de4aed8512e09993366290ffbe1050fe1bd85dbbe97

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

relayTrace.realtimedata.max.size

Specifies the maximum data volume allowed to be saved in the trunk tracing real-time data table.

Data type: integer

Value range: integer ranging from 1 to 1,500,000

Default value: 1,500,000

Restart

ipphone.cpe.username

Indicates the authorization user name of IP phones during communication between eSight and IP phones.

Data type: character string

Value range: character string

Default value: huawei

Restart

ippbx.version.timeout

Indicates the timeout interval of the enable mode in the Huawei IT version.

Data type: character string

Values: 5, 10, 20, or never

Default value: 5

Restart

relayTrace.realtimedata.delete.size

Indicates the data volume that can be deleted for one time after data in the trunk tracing real-time data table reaches the upper limit.

Data type: integer

Value range: integer ranging from 1 to 50,000

Default value: 50,000

Restart

iad.upgrade.ftps.ftpsReadUserName

Indicates the user name used for IAD upgrade through FTPS.

Data type: character string

Value range: character string

Default value: ftpsread

Restart

iad.backupandrecovery.ftp.username

Indicates the user name for backing up and restoring the IAD configuration file through FTP.

If the parameter is modified, installation directory\AppBase\etc\ftpusers.properties is also updated after the restart.

Data type: character string

Value range: character string

Default value: UCCIAD

Restart

ippbx.max.num.vqalarm

Indicates the maximum data volume allowed to be saved in the IP PBX voice quality exception information table.

Data type: integer

Value range: integer ranging from 1 to 50

Default value: 50

Restart

ipphone.accessscan.acs.protocol.type

Indicates the protocol type for IP phone access through scanning.

NOTE:

The HTTP protocol is risky. HTTPS is recommended.

Data type: character string

Values: http or https

Default value: https

Restart

iad.upgrade.ftps.ftpsWriteUserName

Indicates the user name used for IAD upgrade through FTPS.

Data type: character string

Value range: character string

Default value: ftpswrite

Restart

iad.backupandrecovery.ftps.username

Indicates the user name for backing up and restoring the IAD configuration file through FTPS.

Data type: character string

Value range: character string

Default value: UCCIAD

Restart

ippbx.delete.num.vqalarm

Indicates the data volume that can be deleted one time after data in the voice quality exception information table reaches the upper limit.

Data type: integer

Value range: integer ranging from 1 to 5

Default value: 5

Restart

ippbx.oldVersion.loginName

Indicates the login user name for IP PBXs running earlier versions.

Data type: character string

Value range: character string

Default value: null

Restart

dspTrace.histroydata.delete.size

Indicates the data volume that can be deleted for one time after data in the DSP tracing historical data table reaches the upper limit.

Data type: integer

Value range: integer ranging from 1 to 50,000

Default value: 50,000

Restart

ippbx.SynCMD.maxWaitTime

Indicates the maximum waiting time of synchronization commands in the IP PBX communication channel.

Data type: integer

Value range: integer ranging from 1 to 300,000

Default value: 300,000

Restart

msunit.data.max.size

Specifies the maximum data volume allowed to be saved in the traffic statistics collection task.

Data type: integer

Value range: integer ranging from 1 to 1,000,000

Default value: 1,000,000

Restart

iad.upgrade.ftps.ftpswritepwd

Indicates the FTPS cipher text password for IAD upgrade.

Data type: character string

Value range: Cipher text encrypted using an encryption tool

Default value: f4f9b5cf90cf57a9c554e341d7d4d79f7f1bade0cc6ea4c035e1d47d982fcd80d32fdcf83b87cd982347d6ddad0b5396

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

ums.protocal.snmp.v3.accessPort

Indicates the default port for UMS access.

Data type: integer

Value range: valid service port

Default value: 161

Restart

ippbx.oldVersion.password

Indicates the login password for IP PBXs running earlier versions.

Data type: character string

Value range: Cipher text encrypted using an encryption tool

Default value: null

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

ippbx.max.Started.MsunitTask

Indicates the maximum number of traffic statistics tasks allowed to be started.

Data type: integer

Value range: integer ranging from 1 to 300

Default value: 300

Restart

iad.protocol.ssh.password

Indicates the default cipher text password of the SSN user for automatic discovery of IADs.

Data type: character string

Value range: Cipher text encrypted using an encryption tool

Default value: a20e32747bf5bb28e2b2b8560b56635efd97ff54ad8dc343b30067a0f096f7cd

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

ippbx.version.isnorversion

Specifies whether the Huawei IT mode is used.

Data type: integer

Value range: true or false

Default value: true

Restart

UC.FTPS.PORT

Indicates the FTPS service port on the IAD.

Data type: integer

Value range: valid service port

Default value: 14001

Restart

ippbx.alarm.type

Indicates the protocol type used by IP PBXs to report alarms.

Data type: character string

Values: SNMP/TELNET

Default value: TELNET

NOTE:

Telnet indicates that the alarm is reported through the access protocol.

Restart

NATIP

This item is unavailable by default. You need to configure this item only when NAT is configured on eSight.

The configuration is as follows:

NATIP=192.168.3.39:10.135.36.198 / 192.168.3.111:10.137.96.92

The eSight IP addresses before and after the mapping form a pair, separated by a colon (:). If you configure multiple pairs of IP addresses, separate them with slashes (/). For details, see the related configuration description.

Data type: IP address pair

Value range: IP:IP/IP:IP

Default value: null

Immediately

tr069.http.port

Indicates the tr069 communication HTTP port.

Data type: integer

Value range: valid service port

Default value: 8089

Restart

tr069.https.port

Indicates the tr069 communication HTTPS port.

Data type: integer

Value range: valid service port

Default value: 8444

Restart

securite.switch

Indicates whether to support TR069, HTTPS, and SNMPv2.

Data type: character string

Value range: open/close

Default value: open

Restart

http.server.ipaddr

Indicates the file server IP address.

Data type: IP address

Value range: IP address

Default value: localhost

Restart

file.server.http.port

Indicates the HTTP port of the file server.

Data type: integer

Value range: valid service port

Default value: 38081

Restart

file.server.https.port

Indicates the HTTPS port of the file server.

Data type: integer

Value range: valid service port

Default value: 9444

Restart

elastic.server.ipaddr

Indicates the elastic IP address of the file server.

Data type: IP address

Value range: IP address

Default value: IP address

Restart

tls.file.server.http.port

Indicates the HTTP port of the TLS service.

Data type: integer

Value range: valid service port

Default value: 32233

Restart

tls.file.server.https.port

Indicates the HTTPS port of the TLS service.

Data type: integer

Value range: valid service port

Default value: 32234

Restart

tr069.sbc.auth

Indicates the user name and password used for the authentication of the SBCs.

Data type: character string

Value range: character string

Encryption mode: SHA256 irreversible encryption

Default value: eSight:tpKtACeoz7Ev7Uj9pXxhjVVftpH0fQED33Fzr///fyo=

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

In tr069.sbc.auth=eSight:tpKtACeoz7Ev7Uj9pXxhjVVftpH0fQED33Fzr///fyo=, eSight before the colon (:) is the user name, and tpKtACeoz7Ev7Uj9pXxhjVVftpH0fQED33Fzr///fyo= next to the colon (:) is the encrypted password.

Immediately

tr069.sbc.shakey

Indicates the random key of the SBC device authentication password and ciphertext.

Data type: character string

Value range: character string

Default value: ta6k8oQnVUqDnnKw6g80qmPdOIkzoj8YUFaINzX5o/4=

Modification method: For details, see Changing the Collaborations Passwords.

Immediately

useSBCTr069

Indicates whether to enable the authentication function for SBCs.

NOTE:

Disabling authentication has security risks. Therefore, evaluate the possible impacts before disabling authentication.

Data type: character string

Value range: true or false

Default value: true

Immediately

supportSBCHttp

Indicates whether HTTP is supported for SBC access.

NOTE:

The HTTP protocol is risky. HTTPS is recommended.

Data type: character string

Value range: true or false

Default value: false

Immediately

ippbx.PeriodicBackup.needSave

Indicates whether to save the configurations on the device before the configurations are periodically backed up.

Data type: character string

Value range: true or false

Default value: false

Immediately

tr069.sbc.failedCount

Indicates the number of SBC authentication failures. If the authentication failure count reaches 10, the IP address will be locked.

Data type: integer

Value range: positive integer

Default value: 10

Immediately

tr069.sbc.devicemodel.supprot

Indicates the SX device type supported by the TR069 protocol.

Data type: character string

Value range: character string

Default value: SX1000,SX3000

Immediately

Precautions

Do not modify the configuration file unless necessary.

If you modify the configuration items using the GUI tool, the modifications take effect immediately. If you manually modify the configuration items, refer to their effective mode.

Configuration Example

realay.histroydata.max.size=1500000

realay.histroydata.delete.num=500000

relayTrace.realtimedata.max.size=1500000

relayTrace.realtimedata.delete.size=50000

dspTrace.histroydata.max.size=200000

dspTrace.histroydata.delete.size=50000

dsp.realtimedata.max.size=500000

dsp.realtimedata.delete.size=10000

ippbx.max.Started.MsunitTask=300

ippbx.protocol.type = Ssh

ippbx.SynCMD.maxWaitTime=300000

ippbx.ftps.enable=true

ippbx.relaytrace.start.flag = false

ippbx.dsptrace.start.flag = false

ippbx.upgrade.ftps.FTPS_USERNAME=UCIPPBX

ippbx.upgrade.ftps.FTPS_PASSWORD=94b5913233efa460c88d1d0b8a2740598b8f84490e79b448af3f804b89f278ceb77b3721f45621f71561f634476fe453

ippbx.alarm.type=TELNET

ippbx.version.isnorversion=true

ippbx.version.timeout=5

ippbx.oldVersion.loginName=

ippbx.oldVersion.password=

ippbx.max.num.vqalarm=50

ippbx.delete.num.vqalarm=5

softcoChannelMaxBufferInSize=50000

msunit.data.max.size=1000000

IAD.FTPSorFTP=FTPS

UC.FTPS.PORT=14001

iad.protocol.ssh.username = root

iad.protocol.ssh.password = a20e32747bf5bb28e2b2b8560b56635efd97ff54ad8dc343b30067a0f096f7cd

iad.upgrade.ftp.readusername=ftpread

iad.upgrade.ftp.readpwd=2e7d77997c26f401038b3d1ffeff4c89e57a81d756e9e80ba144158987dfb150b793c1243931ae155f2dc73f1148d592

iad.upgrade.ftp.writeusername=ftpwrite

iad.upgrade.ftp.writepwd=53b3cc8cc5a31e917e312e1bd84cee072551e2cc693c3656a7615e5318d517943abbc2a95bc701be0f6c3666cceb7fa0

iad.upgrade.ftps.ftpsReadUserName=ftpsread

iad.upgrade.ftps.ftpsreadpwd=9a7aeaec763c83b4270f2c848021764588ad328675cf0aa38ed07488a21348a4e65af5d081b0535c37dee5124b801c25

iad.upgrade.ftps.ftpsWriteUserName=ftpswrite

iad.upgrade.ftps.ftpswritepwd=f4f9b5cf90cf57a9c554e341d7d4d79f7f1bade0cc6ea4c035e1d47d982fcd80d32fdcf83b87cd982347d6ddad0b5396

iad.backupandrecovery.ftp.username=UCEMS

iad.backupandrecovery.ftp.password=cdb6234823b773a3a69d0a0651f325b57c771ca0616198e8c199b48e43d3a20a

iad.backupandrecovery.ftps.username=UCEMS

iad.backupandrecovery.ftps.password=cdb6234823b773a3a69d0a0651f325b57c771ca0616198e8c199b48e43d3a20a

iad.protocol.telnet.username=root

iad.protocol.telnet.password=a20e32747bf5bb28e2b2b8560b56635efd97ff54ad8dc343b30067a0f096f7cd

auth.user=eSight

auth.password=b46559e5be49866d3b309bec441d0d32b2e036e0b7e9dd988cf02dd97521d57854e12657d75514f4df763787134acbcc

ipphone.cpe.username=huawei

ipphone.cpe.password=d834cea9d85525354f3bba7a82747a7d45ddfb4606e4407be657476628ffabf5

ipphone.accessscan.acs.protocol.type=https

ums.protocal.snmp.v3.authType=HMAC_SHA

ums.protocal.snmp.v3.accessPort=161

U29.businessPort.heartBeat.period=5

vqm.data.max.size=1000000

ems_config_readWriter.properties

Function

The configuration file configures service parameters for IP phones, IP PBXs, and IADs.

Path

eSight installation directory/AppBase/etc/uc/ems_config_readWriter.properties

Description
Table 9-127 Configuration items in ems_config_readWriter.properties

Parameter

Description

Setting

Effective Mode

upgrade.out.time

Indicates the upgrade timeout duration.

Data type: integer

Value range: 1 to 30 minutes

Default value: 30

Immediately

upgrade.autoretry.times

Indicates the number of automatic retries for the upgrade.

Data type: integer

Value range: 0-3

Default value: 3

Immediately

max.concurrent.count

Indicates the maximum number of concurrent upgrades.

Data type: integer

Value range: 0-1000

Default value: 100

Immediately

ipphone.firmware.httpurl

Indicates the default server address if the security mode is HTTP in the configuration file of the eSpace 7800 series IP phones.

Data type: character string

Value range: valid URL

Default value: null

Immediately

ipphone.firmware.httpsurl

Indicates the default server address if the security mode is HTTPS in the configuration file of the eSpace 7800 series IP phones.

Data type: character string

Value range: valid URL

Default value: null

Immediately

ipphone.firmware.79xx.httpurl

Indicates the default server address if the security mode is HTTP in the configuration file of the eSpace 7900 series IP phones.

Data type: character string

Value range: valid URL

Default value: null

Immediately

ipphone.firmware.79xx.httpsurl

Indicates the default server address if the security mode is HTTPS in the configuration file of the eSpace 7900 series IP phones.

Data type: character string

Value range: valid URL

Default value: null

Immediately

lockCount

Indicates the maximum number of device authentication failures.

Data type: integer

Value range: 0-5

Default value: 5

The configuration takes effect after authentication is enabled for the IP phones and SBCs.

dispatchKey

Indicates the indicator used by eSight to allocate numbers to IP phones.

Data type: character string

Value range: mac or sn

Default value: mac

Immediately

tr069.auth

Indicates the user name and password used for TR069 authentication of terminals.

Data type: character string

Value range: character string

Default value: eSight:b46559e5be49866d3b309bec441d0d32b2e036e0b7e9dd988cf02dd97521d57854e12657d75514f4df763787134acbcc

Modification method: For details, see eSight System Users.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

In tr069.auth=eSight:47281cb782534ecabf1e81caf963408de4cbc16408018cb42b498402251f6235, eSight before the colon (:) is the user name, and 47281cb782534ecabf1e81caf963408de4cbc16408018cb42b498402251f6235 next to the colon (:) is the encrypted password.

Immediately

tr069.authNew

Indicates the user name and password used for TR069 authentication of terminals.

Data type: character string

Value range: character string

Default value: ems\:@010200000000b44ed1400e851e03c88cf7b8c4c6adb9d380124b56deab03a8dc220e152ac5a6

Modification method: For details, see eSight System Users.

NOTICE:

In tr069.authNew=ems\:@010200000000b44ed1400e851e03c88cf7b8c4c6adb9d380124b56deab03a8dc220e152ac5a6, ems before the colon (:) is the user name, and @010200000000b44ed1400e851e03c88cf7b8c4c6adb9d380124b56deab03a8dc220e152ac5a6 next to the colon (:) is the encrypted password.

Immediately

tr069.authAccess

Indicates the user name and password used for TR069 authentication of terminals.

Data type: character string

Value range: character string

Default value: eSight\:dTs1I1FlzVnGwNkdSOtdVHc/NqfaZTWL1KISodU2g/0\=|ems\:WBcUpctJ6Nez/ewmIlLFkcIf/iyig9LmSOfmUl55W7Y\=

Modification method: For details, see eSight System Users.

NOTICE:

In tr069.authAccess=eSight\:dTs1I1FlzVnGwNkdSOtdVHc/NqfaZTWL1KISodU2g/0\=|ems\:WBcUpctJ6Nez/ewmIlLFkcIf/iyig9LmSOfmUl55W7Y\=, eSight before the colon (:) is the user name and dTs1I1FlzVnGwNkdSOtdVHc/NqfaZTWL1KISodU2g/0\=|ems\:WBcUpctJ6Nez/ewmIlLFkcIf/iyig9LmSOfmUl55W7Y\= after the colon (:) is the ciphertext password.

Immediately

useTr069

Indicates whether to enable the authentication function for IP phones.

Data type: character string

Value range: true or false

Default value: true

Immediately

tr069.devicemodel.supprot

Indicates the type of the device that supports the TR069 protocol.

Data type: character string

Value range: character string

Restart

tr111.devicemodel.supprot

Indicates the type of the device that supports the TR111 protocol.

Data type: character string

Value range: character string

Restart

dispatchNumberSupport

Indicates whether eSight supports number allocation.

Data type: character string

Value range: true or false

Default value: false

Immediately

lockTime

Indicates the lock time after the device authentication fails.

Data type: integer

Value range: 2 minutes

Default value: 2

The configuration takes effect after authentication is enabled for the IP phones and SBCs.

lockTimeOut

Indicates the lock timeout interval after the device authentication fails.

Data type: integer

Value range: 600000(ms)

Default value: 600000

The configuration takes effect after authentication is enabled for the IP phones and SBCs.

ipphone.report.switch

Indicates heartbeat detection of IP phones. This parameter is displayed in the configuration file only when users configure it on the page.

Data type: character string

Value range: true or false

Default value: false

Immediately

auto.upgrade.switch

Indicates whether to automatically retry login failure tasks.

Data type: character string

Value range: true or false

Default value: false

Immediately

supportHttp

Indicates whether HTTP is supported for IP phone access.

Data type: character string

Value range: true or false

Default value: false

Restart

heartbeat.period

Indicates the heartbeat interval.

Data type: integer

Value range: positive integer

Default value: 30

Restart

failedCount

Indicates the number of authentication failures of the TLS file server. If the authentication failure count reaches 50, the IP address will be locked.

Data type: integer

Value range: positive integer

Default value: 50

Restart

supportNat

Indicates whether eSight can manage IP phones that communicate over the NAT device.

Data type: character string

Value range: true or false

Default value: false

Restart

dispatchType

Indicates the automatic number allocation type for IP phones.

Data type: character string

Value range: uPortal or eSight

Default value: uPortal

Restart

uportal.auth

Indicates the authentication user name and password for accessing eSight on uPortal.

Data type: character string

Value range: character string

Default value: eSight\:ZvBdkowi3RJEcngT0a41xcezpa+WnRcN+SFyw8GjYIs\=yrxbpEh3IjP/Cu6RdK/BDv1XVokG0IrtVXXUmDFXjFg\=

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:
  • The password must be encrypted using the irreversible Password-Based Key Derivation Function (PBKDF2) algorithm.
  • To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

uportal.failedCount

Indicates the number of authentication failures of eSight access from uPortal. If the authentication failure count reaches 5, the IP address will be locked for 5 minutes.

Data type: integer

Value range: positive integer

Default value: 5

Restart

registerAlarm

Indicates the switch for the IP phone number registration status alarm. The switch is disabled by default. When the switch is enabled, an alarm is generated if an IP phone number is unregistered.

Data type: character string

Value range: on or off

Default value: off

Immediately

stun.enable

Indicates the STUN server switch.

Data type: character string

Value range: true or false

Default value: false

Restart

stun.password.seed

Indicates the password seed of the STUN server.

Data type: character string

Value range: character string

Modification method: For details, see Changing the Collaborations Passwords.

Restart

stun.password.salt

Indicates the password salt of the STUN server.

Data type: character string

Value range: character string

Restart

stun.maxPeriod

Indicates the maximum period for the terminal to send requests to the STUN server.

Data type: integer

Value range: 10–3600

Default value: 3600

Restart

stun.minPeriod

Indicates the minimum period for the terminal to send requests to the STUN server.

Data type: integer

Value range: 10–3600

Default value: 10

Restart

stun.port

Indicates the port of the STUN server.

Data type: integer

Fixed value: 3478

Restart

stun.username

Indicates the user name of the STUN server.

Data type: character string

Value range: character string

Restart

stun.local.ip

Indicates the local IP address of the STUN server.

Data type: IP address

Value range: IP address

Restart

stun.out.ip

Indicates the external access IP address of the STUN server.

Data type: IP address

Value range: IP address

Restart

deviceType.check.switch

Indicates whether to check the model of a hard terminal when the hard terminal connects to eSight.

NOTE:

If a hard terminal added to eSight does not have a model, you need to delete the hard terminal and add it to eSight again. Otherwise, the hard terminal cannot connect to eSight.

Data type: character string

Value range: true or false

Default value: false

Immediately

support.deviceType.check

Indicates the type of hard terminal supporting model check.

Data type: character string

Value range: character string

Default value: TE10,TE20,TEX0,DP300,HUAWEI Bar 500,HUAWEI Board,HUAWEI Box 500,HUAWEI Box 700,HUAWEI Box 900

This parameter takes effect only when deviceType.check.switch is set to true.

cloudportal.token.auth.enable

Indicates whether the soft client sends a token to the CloudPortal for authentication.

Data type: character string

Value range: true or false

Default value: false

Immediately

cloudportal.token.url

Indicates the path for the soft client to send a token to the CloudPortal for authentication.

This parameter has a fixed value of /rest/usg/sso/v1/token/validate and cannot be modified.

This parameter takes effect only when cloudportal.token.auth.enable is set to true.

terminal.cmdcache.size

Indicates the number of commands that can be cached in the command cache for each terminal.

Data type: integer

Value range: positive integer

Default value: 20

Restart

terminal.cmdcache.expire.time

Indicates the aging period of the command cache.

Data type: integer

Value range: positive integer

Default value: 1-168

Restart

terminal.cmdcache.switch

Indicates whether to enable the command cache function.

Data type: character string

Value range: true or false

Default value: true

Restart

tr069.cpe.InternetGatewayDevice

Indicates the terminal type that requires eSight to reset the CPE account password during terminal access. (The TR069 model is the gateway terminal.)

This parameter has a fixed value of TE10,TE20,TEX0,DP300,TEDesktop,C13, C31 and cannot be modified.

-

tr069.cpe.Device

Indicates the terminal type that requires eSight to reset the CPE account password during terminal access. (The TR069 model is the device terminal.)

This parameter has a fixed value of WeLink Android,WeLink Ios,WeLink Mac,WeLink Win,IP Phone 7905,SoftConsole and cannot be modified.

-

STGInfo.devicemodel

Indicates the terminal type that requires eSight to deliver STG parameters in advance on networks with the STG.

This parameter has a fixed value of TE10,TE20,WeLink Android,WeLink Ios,WeLink Mac,WeLink Win,C13,C31,SoftConsole and cannot be modified.

-

stun.dog.period

Indicates the watchdog cycle of the STUN service.

Data type: integer

Value range: positive integer

Default value: 10

Restart

stun.local.port

Indicates the local listening port of the STUN service.

Data type: integer

Value range: 0-65535

Default value: 3478

Restart

stun.ip.list

Indicates the IP address segments for which the STUN service is disabled.

Data type: character string

Value range: character string

Default value: null

Restart

terminal.access.control

Indicates whether to access a terminal. By default, terminal cannot be accessed. If this parameter is set to true, eSight checks whether uPortal performs service provisioning on a terminal during terminal access. If no, the terminal cannot be accessed.

Data type: boolean

Value range: true or false

Default value: false

Restart

uportal.token.port

Indicates the port used for eSight to perform token authentication through the uPortal during soft terminal access.

This parameter has a fixed value of 8543 and cannot be modified.

-

uportal.token.url

Indicates the URL used for eSight to perform token authentication through the uPortal during soft terminal access.

This parameter has a fixed value of /services/SAML2Server/ArtifactResolutionService and cannot be modified.

-

activecoce.hackey

Indicates the HAC salt value used for encrypting an activation code.

Data type: character string

Value range: character string

Default value: 6d1d380d906c4954b488ade0487597f5

Restart

uportal.token.verify.servercert

Indicates whether to enable the authentication server when the soft client sends the token to the uPortal for authentication.

Data type: boolean

Value range: true or false

Default value: true

Restart

uportal.token.sslpath

Indicates the SSL certificate library for the soft client to send the token to the uPortal for authentication.

Data type: character string

Value range: character string

Default value: uportTustStore.jks

Restart

uportal.keystore.pwd

Indicates the password of the SSL certificate library for the soft client to send the token to the uPortal for authentication.

Data type: character string

Value range: character string

Default value: @010200000000d433731ecfda63adf8a75d7b704c5de6d0eb0f3ab6809a47adae0d49d60a19fc

Restart

ipphone.profile.auth.type

Indicates the authentication mode for the IP phone to upload profile files to the eSight server or download profile files from the eSight server.

Data type: character string

Value range:

  • compatible: If the request sent by the IP phone does not contain the user token, the system directly performs the corresponding request operation. If the request sent by the IP phone contains the user token, eSight authenticates the token and then sends the token to the uPortal for authentication. eSight checks whether the file obtained by the IP phone is downloaded from eSight based on the authentication result and returned user belonging. If yes, eSight performs the corresponding request operation. Otherwise, eSight denies the request.
  • token_only: All terminals must pass token authentication. If the request of the IP phone does not contain the user token, eSight directly denies the request and returns error code 401. If the request sent by the IP phone contains the user token, eSight authenticates the token and then sends the token to the uPortal for authentication. eSight checks whether the file obtained by the IP phone is downloaded from eSight based on the authentication result and returned user belonging. If yes, eSight performs the corresponding request operation. Otherwise, eSight denies the request.
    NOTICE:

    Before changing the authentication mode to token_only, ensure that all IP phones at the site have been upgraded to the version where profile requests support token authentication. Otherwise, IP phones that are not upgraded cannot upload and download profile files.

Default value: compatible

Immediately

snReportSupport

Indicates whether to enable eSight to report terminal SNs to the uPortal.

Data type: Boolean

Value range: true or false

Default value: false

Immediately

Precautions

Do not modify the configuration file unless necessary.

If you modify the configuration items using the GUI tool, the modifications take effect immediately. If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

#IP Phone auto upgrade server directory

ipphone.firmware.httpurl=http://ucems.huawei.com:8089/tr069/services/acs

ipphone.firmware.httpsurl=https://ucems.huawei.com:8444/tr069/services/acs

ipphone.firmware.79xx.httpurl=http://ucems.huawei.com:8089/tr069/services/acs

ipphone.firmware.79xx.httpsurl=https://ucems.huawei.com:8444/tr069/services/acs

#TR069 Authentication Information

useTr069=true

#Authentication user name and password

tr069.auth=eSight:b46559e5be49866d3b309bec441d0d32b2e036e0b7e9dd988cf02dd97521d57854e12657d75514f4df763787134acbcc

tr069.authNew=ems:@010200000000b44ed1400e851e03c88cf7b8c4c6adb9d380124b56deab03a8dc220e152ac5a6

dispatchNumberSupport=false

dispatchKey=mac

lockCount=5

#unit:minute

lockTime=2

upgrade.out.time=1800

upgrade.autoretry.times=3

max.concurrent.count=100

ipphone.report.switch=true

dispatchType=uPortal

uportal.auth=eSight\:b46559e5be49866d3b309bec441d0d32b2e036e0b7e9dd988cf02dd97521d57854e12657d75514f4df763787134acbcc

uportal.failedCount=5

deviceType.check.switch=true

support.deviceType.check=TE10,TE20,TEX0,DP300,HUAWEI Bar 500,HUAWEI Board,HUAWEI Box 500,HUAWEI Box 700,HUAWEI Box 900

cloudportal.token.auth.enable=false

cloudportal.token.url=/rest/usg/sso/v1/token/validate

terminal.cmdcache.size=20

terminal.cmdcache.expire.time=72

terminal.cmdcache.switch=true

tr069.cpe.InternetGatewayDevice=TE10,TE20,TEX0,DP300,TEDesktop,C13,C31

tr069.cpe.Device=WeLink Android,WeLink Ios,WeLink Mac,WeLink Win,IP Phone 7905,SoftConsole

STGInfo.devicemodel=TE10,TE20,WeLink Android,WeLink Ios,WeLink Mac,WeLink Win,C13,C31,SoftConsole

stun.dog.period=10

stun.local.port=3478

stun.ip.list=

terminal.access.control=false

uportal.token.port = 8543

uportal.token.url = /services/SAML2Server/ArtifactResolutionService

activecoce.hackey=6d1d380d906c4954b488ade0487597f5

uportal.token.verify.servercert=true

uportal.token.sslpath=uportTustStore.jks

uportal.keystore.pwd=@010200000000d433731ecfda63adf8a75d7b704c5de6d0eb0f3ab6809a47adae0d49d60a19fc

ipphone.profile.auth.type=compatible

snReportSupport=false

userinfo.properties

Function

The configuration file configures parameters for managing VIP phone user information.

Path

eSight installation directory/AppBase/etc/uc/userinfo.properties

Description
Table 9-128 Configuration items in userinfo.properties

Parameter

Description

Setting

Effective Mode

pollPeriod

Sets the polling period of IP phone connection status, in seconds.

Data type: integer

Value range: 60–2,592,000

Default value: 60

Restart

threadNum

Sets the number of running status polling threads.

Data type: integer

Value range: 10–20

Default value: 10

Restart

Precautions

Do not modify the configuration file unless necessary.

If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

#VIP config parameters

pollPeriod=60

threadNum=10

TP_App_svc.xml

Function

The configuration file configures the key to encrypt the password for reporting alarms.

Path

eSight installation directory/AppBase/sysagent/etc/sysconf/svcbase/TP_App_svc.xml

Description
Table 9-129 Configuration items in TP_App_svc.xml

Parameter

Description

Setting

Effective Mode

tpAPP/tpAlarm/shakey

Configures the key to encrypt the password for reporting alarms.

Data type: character string

Value range: Cipher text encrypted using an encryption tool

Default value: 2c5c3c1224f337b7d195dbba41e18f22425bd0fa2bf7a62fed88e6d036fa5289

Modification method: For details, see Changing the Collaborations Passwords.

Restart

Precautions

Do not modify the configuration file unless necessary.

If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

<?xml version="1.0" encoding="utf-8"?>

<tpAPP name="tpAPP">

<config name="tpAlarm">

<param name="shakey">2c5c3c1224f337b7d195dbba41e18f22425bd0fa2bf7a62fed88e6d036fa5289</param>

</config>

</tpAPP>

ip.disaster

Function

The configuration file configures items for IADs in the remote disaster recovery networking.

Path

eSight installation directory/AppBase/etc/uc/ip.disaster

Description
Table 9-130 Configuration items in ip.disaster

Parameter

Description

Setting

Effective Mode

ip.pair

You need to configure this item only in the remote two-node cluster networking with multiple network adapters. This item is unavailable by default.

The configuration is as follows: ip.disaster=192.168.3.39:192.168.3.111 / 10.135.36.198:10.137.96.92

The IP addresses of the two servers are separated by a colon (:). You can configure multiple pairs of IP addresses. You must configure this item for both servers in the two-node cluster.

For details, see the related configuration description.

Data type: IP address pair

Value range: IP:IP/IP:IP

Default value: null

Immediately

ip.primary

You need to configure this item only in the remote two-node cluster networking in which multiple network adapters are not supported. This item is unavailable by default.

The configuration is as follows: ip.primary=192.168.3.39

This item specifies the IP address of the primary server in the two-node cluster. You must configure this item for both servers in the two-node cluster.

For details, see the related configuration description.

Data type: IP address

Value range: IP

Default value: null

Immediately

ip.disaster

You need to configure this item only in the remote two-node cluster networking in which multiple network adapters are not supported. This item is unavailable by default.

The configuration is as follows: ip.disaster=192.168.3.39

This item specifies the IP address of the secondary server in the two-node cluster. You must configure this item for both servers in the two-node cluster.

For details, see the related configuration description.

Data type: IP address

Value range: IP address

Default value: null

Immediately

Precautions

This configuration file is required only in the remote two-node cluster networking. It is unavailable by default.

Configuration Example

ip.disaster=192.168.3.39:192.168.3.111 / 10.135.36.198:10.137.96.92

ip.primary=192.168.3.39

ip.disaster=192.168.3.111

config.properties(TP)

Function

The configuration file sets test instance parameters for a telepresence conference.

Path

AppBase/etc/tp/config.properties

Description
Table 9-131 Configuration items in config.properties

Parameter

Description

Setting

Effective Mode

ICMPECHO_probeCount

Indicates the detection count.

Data type: integer

Value range: 1-15

Default value: 3

Restart

ICMPECHO_intervals

Indicates the interval at which packets are sent.

Data type: integer

Value range: 1-60

Default value: 20

Restart

ICMPECHO_timeOut

Indicates the timeout interval.

Data type: integer

Value range: 1-60

Default value: 3

Restart

ICMPECHO_packetDataSize

Indicates the packet padding size.

Data type: integer

Value range: 0-8100

Default value: 500

Restart

ICMPECHO_packetDataFill

Indicates the packet padding content.

Data type: character string

Value range: 1-225 characters (Only digits and letters are supported.)

Default value: eSightTest

Restart

ICMPECHO_maxTtl

Indicates the maximum TTL value of a packet.

Data type: integer

Value range: 1-225

Default value: 30

Restart

ICMPECHO_tos

Indicates the TOS value of a packet.

Data type: integer

Value range: 0-225

Default value: 0

Restart

ICMPECHO_numPackets

Indicates the number of probe packets sent each time.

Data type: integer

Value range: 1-50

Default value: 20

Restart

UDPJEETER_probeCount

Indicates the detection count.

Data type: integer

Value range: 1-15

Default value: 3

Restart

UDPJEETER_packetDataSize

Indicates the packet padding size.

Data type: integer

Value range: 0-8100

Default value: 500

Restart

UDPJEETER_maxTtl

Indicates the maximum TTL value of a packet.

Data type: integer

Value range: 1-225

Default value: 30

Restart

UDPJEETER_targetPort

Indicates the destination port.

Data type: integer

Value range: 1-65535

Default value: 33434

Restart

UDPJEETER_timeOut

Indicates the timeout interval.

Data type: integer

Value range: 1-60

Default value: 3

Restart

UDPJEETER_intervals

Indicates the interval at which packets are sent.

Data type: integer

Value range: 1-60

Default value: 20

Restart

UDPJEETER_numPackets

Indicates the number of probe packets sent each time.

Data type: integer

Value range: 1-50

Default value: 20

Restart

UDPJEETER_tos

Indicates the TOS value of a packet.

Data type: integer

Value range: 0-225

Default value: 0

Restart

UDPJEETER_packetDataFill

Indicates the packet padding content.

Data type: character string

Value range: 1-225 characters (Only digits and letters are supported.)

Default value: eSightTest

Restart

TPCONFENRENT_DISPLAY

Indicates whether to display the conference maintenance and diagnosis menus.

Data type: boolean

Value range: true or false

Default value: false

Restart

TE.ADD.SUPPORT

Indicates whether TE devices can be connected.

Data type: boolean

Value range: true or false

Default value: false

Restart

Precautions

Do not modify the configuration file unless necessary.

If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

#Probe times

ICMPECHO_probeCount=3

#Interval for sending packets (ms)

ICMPECHO_intervals=20

#Timeout interval (s)

ICMPECHO_timeOut=3

#Packet filling size (byte)

ICMPECHO_packetDataSize=500

#Packet filling content

ICMPECHO_packetDataFill=eSightTest

#Max. TTL of a packet

ICMPECHO_maxTtl=30

#Packet TOS

ICMPECHO_tos=0

#Packets sent per probe

ICMPECHO_numPackets=20

#Probe times

UDPJEETER_probeCount=3

#Packet filling size (byte)

UDPJEETER_packetDataSize=500

#Max. TTL of a packet

UDPJEETER_maxTtl=30

#Destination port No

UDPJEETER_targetPort=33434

#Timeout interval (s)

UDPJEETER_timeOut=3

#Interval for sending packets (ms)

UDPJEETER_intervals=20

#Packets sent per probe

UDPJEETER_numPackets=20

#Packet TOS

UDPJEETER_tos=0

#Packet filling content

UDPJEETER_packetDataFill=eSightTest

common.properties

Function

The configuration file configures parameters for the interconnection between eSight and the carrier grade platform (CGP).

Path

eSight installation directory/AppBase/etc/uc/cgp/common.properties

Description
Table 9-132 Configuration items in common.properties

Parameter

Description

Setting

Effective Mode

uccgpFtpName

Indicates the user name used by the CGP to synchronize files to eSight.

Data type: character string

Value range: valid user name

Default value: uccgpFtpuser

Restart

uccgpFtpPsd

Indicates the password used by the CGP to synchronize files to eSight. It is a ciphertext encrypted using the encryption tool provided by eSight.

Data type: character string

Value range: ciphertext encrypted using the encryption tool provided by eSight

Default value: @0102000000003ec3c8f27497e24d211e6ba029d5f10fd23dea2a46fc3d930376531fdc4fc9fb

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

mmldefaultwd

Indicates the MML authorization password for exchange between the CGP and eSight. It is a ciphertext encrypted using the encryption tool provided by eSight.

Data type: character string

Value range: ciphertext encrypted using the encryption tool provided by eSight

Default value: @010200000000ae71b062353b5285a3af913901339cd30b41675295f818b07d84651fe1a6ea40cffcff9e29b43ec6f1b17b42d6f22428

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

soapdefaultwd

Indicates the SOAP authorization password for exchange between the CGP and eSight. It is a ciphertext encrypted using the encryption tool provided by eSight.

Data type: character string

Value range: ciphertext encrypted using the encryption tool provided by eSight

Default value: @010200000000f20eee35b33b038eeaa4f8f77a4bdd49c919f54e80275e591f666c5e794809cb

Modification method: For details, see Changing the Collaborations Passwords.

NOTICE:

To obtain an encrypted password, combine the user name and password into one character string and then encrypt the character string. For example, if the user name is admin and password is Huawei123, encrypt the string adminHuawei123.

Restart

Precautions

Do not modify the configuration file unless necessary.

If you manually modify the configuration items, restart eSight for the modifications to take effect.

The modified parameter values must be the same as those on the LMT.

Configuration Example

#ftps user name used to transfer file when it is connected to CGP

uccgpFtpName=uccgpFtpuser

#ftps password used to transfer filewhen it is connnected to CGP

uccgpFtpPsd=@0102000000003ec3c8f27497e24d211e6ba029d5f10fd23dea2a46fc3d930376531fdc4fc9fb

mmldefaultwd=@010200000000ae71b062353b5285a3af913901339cd30b41675295f818b07d84651fe1a6ea40cffcff9e29b43ec6f1b17b42d6f22428

soapdefaultwd=@010200000000f20eee35b33b038eeaa4f8f77a4bdd49c919f54e80275e591f666c5e794809cb

configcenter.properties

Function

This file is the configuration file of the registration center module.

Path

eSight installation directory/AppBase/etc/uc/configcenter.properties

Description
Table 9-133 Parameters in configcenter.properties

Parameter

Description

Setting

Effective Mode

configcenter.enable

Indicates whether to enable the registration center module.

Data type: character string

Value range: true or false

Default value: false

Restart

Precautions

Do not modify the configuration file unless necessary.

If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

configcenter.enable=false

configserver.roa.inst.xml

Function

This file is used to configure the extended ROA port of the eSight redirection server.

Path

eSight installation directory/AppBase/etc/iemp.framework/configserver.roa.inst.xml

Description
Table 9-134 Parameters in configserver.roa.inst.xml

Parameter

Description

Setting

Effective Mode

dmserver/ConfigServerHttpsport/ssl.keystore.password

Indicates the password of the certificate library corresponding to the HTTPS service on the redirection server.

Data type: character string

Value range: Depends on the certificate library password changed by users.

Default value: 88f57e0e8480160b0b3bbcc64189a202e6d3727ce456bf4f990af9b477d3e257

Modification method: For details, see Changing the Collaborations Passwords.

Restart

dmserver/ConfigServerHttpsport/ssl.include.ciphers

Indicates the algorithm suite list supported by the SSL corresponding to the HTTPS service on the redirection server.

NOTE:
  • Multiple algorithm suites are separated by semicolons (;) and are sorted by priority in descending order. To use other encryption algorithm suites, you need to manually add them.
  • By default, eSight clients can be accessed through the TLSv1.1 and TLSv1.2 protocols. The CBC encryption algorithm used by the TLSv1 protocol is vulnerable to attacks, especially the BEAST attack. It is recommended that the CBC encryption algorithm suite be disabled.

Data type: character string

Value range: encryption suite represented by character strings.

Restart

dmserver/ConfigServerHttpsport/ssl.truststore.password

Indicates the password of the trusted certificate corresponding to the bidirectionally authenticated HTTPS service on the redirection server.

Data type: character string

Value range: Depends on the certificate library password changed by users.

Default value: 9d7961bc8af54d05ce509e03b13ffce3abc7587373e7719b62555fd5aff9908d

Modification method: For details, see Changing the Collaborations Passwords.

Restart

dmserver/ConfigServerHttpsport/verify.client

Indicates whether to enable the bidirectional authentication for the HTTPS service on the redirection server.

Data type: character string

Value range: true or false

Default value: true

Restart

dmserver/ConfigServerHttpsport/ssl.truststore.path

Indicates the path of the trust certificate library on the redirection server.

Data type: character string

Default value: etc/certificate/configserverTrustStore.jks

Restart

dmserver/ConfigServerHttpsport/ssl.keystore.path

Indicates the path of the certificate library on the redirection server.

Data type: character string

Default value: etc/certificate/ucKeyStore

Restart

dmserver/ConfigServerHttpsport/ip

Indicates the listening IP address of the redirection server.

Data type: character string

Default value: southbound IP address

Restart

dmserver/ConfigServerHttpsport/port

Indicates the listening port of the redirection server.

Data type: character string

Default value: 32232

Restart

Precautions

Do not modify the configuration file unless necessary.

If you modify the configuration items using the GUI tool, the modifications take effect immediately. If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

<xml version="1.0" encoding="UTF-8" standalone="no"?><webservers>

<webserver name="ipphone">

<connectors>

<connector name="FileServerHttpSport" type="https">

<property name="ssl.keystore.password" value="88f57e0e8480160b0b3bbcc64189a202e6d3727ce456bf4f990af9b477d3e257" />

</connector>

</connectors>

</webserver>

<webserver name="certificate">

<connectors>

<connector name="TLSServerHttpSport" type="https">

<property name="ssl.keystore.password" value="88f57e0e8480160b0b3bbcc64189a202e6d3727ce456bf4f990af9b477d3e257" />

</connector>

</connectors>

</webserver>

<webserver name="tr069">

<connectors>

<connector name="Tr069HttpSport" type="https">

<property name="ssl.keystore.password" value="88f57e0e8480160b0b3bbcc64189a202e6d3727ce456bf4f990af9b477d3e257"/>

</connector>

</connectors>

</webserver>

</webservers>

ent_uc_med_node_svc.xml

Function

This file is used to configure the FTPS service related to the UC.

Path

eSight installation directory/AppBase/sysagent/etc/sysconf/svcbase/ent_uc_med_node_svc.xml

Description
Table 9-135 Parameters in ent_uc_med_node_svc.xml

Parameter

Description

Setting

Effective Mode

med/oms/ucftpServer/ftps/enable

Indicates whether to enable the FTPS service.

Data type: boolean

Value range: true or false

Default value: true

Restart

med/oms/ucftpServer/ftps/listenerPort

Indicates the listening port of the FTPS server.

Data type: integer

Value range: 1-65536

Default value: 14001

Restart

med/oms/ucftpServer/ftps/passivePorts

Indicates the listening port of a passive data link on the FTPS server.

Configuration method description: The parameter can be set to a single port, an open range, a closed range, or a combination separated by commas (,).

Example:

  • 2300: Only port 2300 can take effect.
  • 2300-2399: Ports ranging from 2300 to 2399 can take effect.
  • 2300-: Ports greater than 2300 can take effect.
  • 2300,2305,2400-: Ports 2300 and 2305, and ports greater than 2400 can take effect.

Data type: integer

Value range: 1-65535

Default value: 31932,32145-32154

Restart

med/oms/ucftpServer/ftps/implicitSsl

Indicates the FTPS implicit mode switch.

NOTE:

To be compatible with devices that do not support the implicit mode, eSight uses the explicit mode by default. The explicit mode has security risks. If the managed device (IAD) supports the implicit mode, use the implicit mode.

Data type: boolean

Value range: true or false

Default value: false

Restart

med/oms/ucftpServer/ftps/checkSslExpiryDate

Indicates whether to verify the validity period of the SSL certificate.

NOTE:
  • The FTPS service verifies the validity period of the SSL certificate only when the parameter is set to true.
  • If the SSL certificate is invalid, the FTPS service is unavailable.
  • Security risks exist if the SSL certificate validity period is not verified. It is recommended that the validity period verification function be enabled.

Data type: boolean

Value range: true or false

Default value: true

Restart

med/oms/ucftpServer/ftps/supportRenegotiate

Indicates whether the SSL used by the FTPS service supports renegotiation.

NOTE:
  • The SSL used by the FTPS service does not support renegotiation only when the parameter is set to false.
  • If the SSL does not support renegotiation, the renegotiation handshake fails between the client and server. The client cannot connect to the FTPS server.
  • Security risks exist if the SSL supports renegotiation. It is recommended that the SSL renegotiation function be disabled.

Data type: boolean

Value range: true or false

Default value: true

Restart

med/oms/ucftpServer/ftps/includeCipherSuites

Indicates the names of all password suites enabled for the FTPS service. Multiple names are separated by commas (,).

Data type: character string

Value range: unrestricted

Default value: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA

Restart

med/oms/ucftpServer/ftps/CAKeystoreFileName

Indicates the CA keystore name of the FTPS server.

Data type: character string

Value range: valid path

Default value: etc/certificate/esight.keystore.ftps

Restart

med/oms/ucftpServer/ftps/CAPass

Indicates the CA keystore password of the FTPS server.

Data type: character string

Value range: Depends on the trusted certificate library password changed by users.

Default value: @010200000000f98fe2f6937545a06a9617e4927972c033611ad2111c21f4b0aeba68127a5c01

Modification method: For details, see Changing the Collaborations Passwords.

Restart

med/oms/ucftpServer/ftps/keystoreFileName

Indicates the keystore name of the FTPS server.

Data type: character string

Value range: valid path

Default value: etc/certificate/esight.keystore.ftps

Restart

med/oms/ucftpServer/ftps/sslPassword

Indicates the keystore password of the FTPS server.

Data type: character string

Value range: Depends on the certificate library password changed by users.

Default value: @010200000000f98fe2f6937545a06a9617e4927972c033611ad2111c21f4b0aeba68127a5c01

Modification method: For details, see Changing the Collaborations Passwords.

Restart

med/oms/ucftpServer/ftps/ssl.protocol

Indicates the SSL protocol version to be enabled for the FTPS. Multiple version names are separated by commas (,).

Data type: character string

Value range: SSL protocol type range

Default value: TLSv1.2

Restart

med/oms/ucftpServer/ftps/permitFileSize

Indicates the size of a file that can be uploaded to or downloaded from the FTPS server, in bytes. The value 0 indicates that the file size is not restricted.

Data type: long

Value range: 0–0x7fffffffffffffffL

Default value: 10737418240

Restart

med/oms/ucftpServer/ftps/permitFileType

Indicates the type suffix of the file that can be uploaded to or downloaded from the FTPS server. The value must be a regular expression supported by the Java. If the parameter is set to null, the file type is not restricted. Note that security risks exist if the parameter is set to null.

Data type: string

Value range: unrestricted

Default value: none

Restart

med/oms/ucftpServer/maxLinkLimit

Indicates the maximum number of FTPS connections.

NOTE:

To ensure that users can properly upload or download files, set this parameter to an even number greater than 0.

Data type: integer

Value range: 1-65535

Default value: 1024

Restart

med/oms/ucftpServer/idleTime

Indicates the FTPS service idle time, in seconds.

Data type: integer

Value range: an integer greater than or equal to 0

Default value: 300

Restart

Precautions

Do not modify the configuration file unless necessary.

If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

<?xml version="1.0" encoding="UTF-8"?>

<med name="med">

<config name="oms">

<config name="ucftpServer">

<config name="ftps">

<param name="enable">true</param>

<param name="listenerPort">14001</param>

<param name="passivePorts">31932,32145-32154</param>

<param name="implicitSsl">false</param>

<param name="checkSslExpiryDate">true</param>

<param name="supportRenegotiate">true</param>

<param name="includeCipherSuites">TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256,TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA</param>

<param name="CAKeystoreFileName">etc/certificate/esight.keystore.ftps</param>

<param name="CAPass">@010200000000f98fe2f6937545a06a9617e4927972c033611ad2111c21f4b0aeba68127a5c01</param>

<param name="keystoreFileName">etc/certificate/esight.keystore.ftps</param>

<param name="sslPassword">@010200000000f98fe2f6937545a06a9617e4927972c033611ad2111c21f4b0aeba68127a5c01</param>

<param name="ssl.protocol">TLSv1.2</param>

<param name="permitFileSize">10737418240</param>

<param name="permitFileType"></param>

<param name="maxLinkLimit">1024</param>

<param name="idleTime">300</param>

</config>

</config>

</config>

</med>

chrconfig.properties

Function

This file is used to configure the CHR.

Path

eSight installation directory/AppBase/etc/tms/chrconfig.properties

Description
Table 9-136 Parameters in chrconfig.properties

Parameter

Description

Setting

Effective Mode

terminal.chr.pack.period

Period for packing CHR files, in minutes.

Data type: integer

Value range: 1-60

Default value: null

Restart

terminal.chr.pack.max

Maximum number of files in a ZIP package.

Data type: integer

Value range: 1-500

Default value: null

Restart

terminal.chr.keep.time

Duration for storing files in the CHR4SI directory, in days.

Data type: integer

Value range: 7

Default value: null

Restart

terminal.chr.diskcheck.period

Interval for checking the partition where the CHR4SI directory is located, in minutes.

Data type: integer

Value range: 1-60

Default value: null

Restart

terminal.chr.disk.threshold

Usage threshold of the partition where the CHR4SI directory is located. The default value is 80%.

Data type: integer

Value range: 80

Default value: null

Restart

terminal.chr.diskdelete.value

Backup ratio of files to be deleted when the partition where the CHR4SI directory is located is deleted. The default value is 10%.

Data type: integer

Value range: 10

Default value: null

Restart

terminal.chr.max.size

Maximum size of files uploaded by a terminal to eSight, in KB.

Data type: integer

Value range: 1-5000

Default value: null

Restart

terminal.chr.max.file.count

Maximum number of files to be uploaded.

Data type: integer

Value range: 1-80000

Default value: null

Restart

terminal.chr.file.support

File name extension of a file to be uploaded.

Data type: character string

Value range: zip and gz

Default value: null

Restart

terminal.chr.dest.suffix

File name extension of a compressed file to be uploaded.

Data type: character string

Value range: .zip

Default value: null

Restart

terminal.chr.chrUser.pw

Default password of the CHR user.

Data type: character string

Value range: character string

Default value: @01020000000041d54a43dc5e32b7fe21ff8ad2e54e7c85e0e7c29799b696da81ba9eaf1db32d

Modification method: For details, see Changing the Collaborations Passwords.

Restart

terminal.chr.chrUser.writable

Whether the write permission is supported in the default initialization permission.

Data type: Boolean

Value range: true or false

Default value: null

Restart

terminal.chr.chrUser.name

FTPS user name for downloading the CHR file.

Data type: character string

Value range: chrUser

Default value: null

Restart

terminal.chr.exe.deaging.hour

24-hour clock for the scheduled aging time, in hours.

Data type: integer

Value range: 1-24

Default value: null

Restart

terminal.chr.exe.deaging.min

24-hour clock for the scheduled aging time, in minutes.

Data type: integer

Value range: 0–60

Default value: null

Restart

terminal.chr.exe.deaging.period

Interval for executing scheduled aging, in minutes.

Data type: integer

Value range: 1440

Default value: null

Restart

Precautions

Do not modify the configuration file unless necessary.

If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

terminal.chr.pack.period = 1

terminal.chr.pack.max = 500

terminal.chr.keep.time = 7

terminal.chr.diskcheck.period = 1

terminal.chr.disk.threshold = 80

terminal.chr.diskdelete.value = 10

terminal.chr.max.size = 5000

terminal.chr.max.file.count = 80000

terminal.chr.file.support = zip,gz

terminal.chr.dest.suffix = .zip

terminal.chr.chrUser.pw =@01020000000041d54a43dc5e32b7fe21ff8ad2e54e7c85e0e7c29799b696da81ba9eaf1db32d

terminal.chr.chrUser.writable = false

terminal.chr.chrUser.name = chrUser

terminal.chr.exe.deaging.hour=24

terminal.chr.exe.deaging.min=0

terminal.chr.exe.deaging.period=1440

fileserver.properties

Function

This file configures the FTPS user information of the terminal management file server.

Path

eSight installation directory/AppBase/etc/uc/fileserver/fileserver.properties

Description
Table 9-137 Parameters in fileserver.properties

Parameter

Description

Setting

Effective Mode

ftps_user

FTPS user name of the terminal management file server.

Data type: character string

Value range: true or false

Default value: fileserver

Restart

ftps_pass

FTPS user password of the terminal management file server.

Data type: character string

Value range: character string

Default value: a39ee3402d8b6006c030ab74fa68af82c7072494e914dd14ca04a6b1cbf456e77df01e815a3e0adc558b2086b1429b1f

Modification method: For details, see Changing the Collaborations Passwords.

Restart

ftps_implicit

FTPS user transmission mode for the terminal management file server. The implicit transmission mode is used by default.

Data type: character string

Value range: true or false

Default value: false

Restart

Precautions

Do not modify the configuration file unless necessary.

If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

ftps_user=fileserver

ftps_pass=a39ee3402d8b6006c030ab74fa68af82c7072494e914dd14ca04a6b1cbf456e77df01e815a3e0adc558b2086b1429b1f

ftps_implicit=false

amc_svc.xml

Function

This file is used to enable the AMC northbound function component.

Path

eSight installation directory/AppBase/sysagent/etc/sysconf/svcbase/amc_svc.xml

Description
Table 9-138 Parameters in amc_svc.xml

Parameter

Description

Setting

Effective Mode

N/A

Disables the AMC northbound function component.

<?xml version="1.0" encoding="utf-8"?>

<!--<amc name="amc">

<sac name="sac">

<services name="services">

<service name="amcService">

<param name="svcagent">eSightAgent</param>

<param name="appdir">com.huawei.ucc.app.amc</param>

<param name="startupmode">auto</param>

<param name="startorder">301</param>

</service>

</services>

</sac>

</amc>-->

Restart

N/A

Enables the AMC northbound function component.

<?xml version="1.0" encoding="utf-8"?>

<amc name="amc">

<sac name="sac">

<services name="services">

<service name="amcService">

<param name="svcagent">eSightAgent</param>

<param name="appdir">com.huawei.ucc.app.amc</param>

<param name="startupmode">auto</param>

<param name="startorder">301</param>

</service>

</services>

</sac>

</amc>

Restart

Precautions

To enable the AMC northbound function, set configuration items correctly by strictly following the instructions.

If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

<?xml version="1.0" encoding="utf-8"?>

<amc name="amc">

<sac name="sac">

<services name="services">

<service name="amcService">

<param name="svcagent">eSightAgent</param>

<param name="appdir">com.huawei.ucc.app.amc</param>

<param name="startupmode">auto</param>

<param name="startorder">301</param>

</service>

</services>

</sac>

</amc>

terminal_upload_logSize.properties

Function
  • The file sets the total space size of all logs that can be saved on the eSight server.
  • The file specifies whether the eSight automatic deployment tasks and manual deployment tasks are exported anonymously.
Path

eSight installation directory/AppBase/etc/uc/terminal_upload_logSize.properties

Description
Table 9-139 Parameters in terminal_upload_logSize.properties

Parameter

Description

Setting

Effective Mode

logSumSize

Maximum size of logs that can be uploaded to the eSight server, in GB.

logSumSize = 500 (default value)

Go to the directory and manually change the value following the equal sign (=).

Restart

isAnonymous

Indicates whether the eSight automatic deployment tasks and manual deployment tasks are exported anonymously.

isAnonymous = true: yes

isAnonymous = false: no

isAnonymous = true (default value)

Go to the directory. To export data anonymously, change the value after the equal sign (=) to true. For non-anonymous export, set this parameter to false.

Restart

Precautions

If you manually modify the parameters, restart eSight for the modifications to take effect.

Configuration Example

logSumSize = 500;

isAnonymous = true.

adaptationConfig.properties

Function

The configuration file is used to configure adaptation packages.

Path

eSight installation directory/AppBase/etc/uc/adaptationConfig.properties

Description
Table 9-140 Parameters in adaptationConfig.properties

Parameter

Description

Setting

Effective Mode

adaptation.disk.file.threshold

Threshold for uploading an adaptation package to the disk. If the adaptation package size exceeds the threshold, the adaptation package cannot be installed.

Data type: integer

Value range: positive integers ranging from 1 to 100

Default value: 90

Restart

Precautions

Do not modify the configuration file unless necessary.

If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

adaptation.disk.file.threshold = 90

i2000Menu.properties

Function

This configuration file connects I2000 alarms to eSight through the I2000 northbound interface.

Path

eSight installation directory/AppBase/etc/i2000Menu

Description
Table 9-141 Parameters in i2000Menu.properties

Parameter

Description

Setting

Effective Mode

i2000.ADD.SUPPORT

Indicates whether to connect I2000 alarms to eSight through the I2000 northbound interface.

Data type: character string

Value range: true or false

Default value: false

Restart

Precautions

If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

i2000.ADD.SUPPORT=true

u2000Menu.properties

Function

This configuration file connects U2000 alarms to eSight through the U2000 northbound interface.

Path

eSight installation directory/AppBase/etc/u2000Menu

Description
Table 9-142 Parameters in u2000Menu.properties

Parameter

Description

Setting

Effective Mode

u2000.ADD.SUPPORT

Indicates whether to connect U2000 alarms to eSight through the U2000 northbound interface.

Data type: character string

Value range: true or false

Default value: false

Restart

Precautions

If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

u2000.ADD.SUPPORT=true

configweakalgorithm.properties

Function

This configuration file is used to configure the function of configuring the weak algorithm suite for adding IP phones to eSight.

Path

eSight installation directory/AppBase/etc/uc/weakalgothm/

Description
Table 9-143 Parameters in configweakalgorithm.properties

Parameter

Description

Setting

Effective Mode

switch

This configuration file is used to configure the function of configuring the weak algorithm suite for adding IP phones to eSight.

  • false: Disables the function of configuring the weak algorithm suite. After this function is disabled, you cannot configure the weak algorithm suite for adding IP phones to eSight.
  • true: Enables the function of configuring the weak algorithm suite. After this function is enabled, you can configure the weak algorithm suite for adding IP phones to eSight.

Data type: character string

Value range: true or false

Default value: false

Restart eSight.

Precautions

It is risky to enable the function of configuring the weak algorithm suite. You are advised to disable the function.

ftpusers.properties

Function

This file configures the FTP user on eSight.

Path

eSight installation directory/AppBase/etc

Description
Table 9-144 Parameters in ftpusers.properties

Parameter

Description

Setting

Effective Mode

eimsFtpuser.home

Home directory of the eimsFtpuser user.

Data type: character string

Value range: absolute path of the installed eSight

Default value: none

You are advised not to modify the parameter.

eimsFtpuser.password

Ciphertext password of the eimsFtpuser user.

Data type: character string

Value range: ciphertext password

Default value: encrypted initial password For details, see Changing the Password of the eimsFtpuser User.

Restart

eimsFtpuser.slatValue

Salt value of the password of the eimsFtpuser user.

Data type: character string

Value range: password encryption salt value

Default value: salt value used for encrypting the initial password For details, see Changing the Password of the eimsFtpuser User.

Restart

Precautions

Do not modify the configuration file unless necessary.

eimsNE.properties

Function

This file configures eIMS devices.

Path

eSight installation directory/AppBase/etc/eims/eimsne

Description
Table 9-145 Parameters in eimsNE.properties

Parameter

Description

Setting

Effective Mode

mmldefaultwd

Default password of the MML protocol channel of the eIMS.

NOTE:

This password is the default password for the MML protocol channel of all eCGPOMU NEs managed by the eIMS. (The password of the sub NE is the same as that of the corresponding eCGPOMU NE.) To modify mmldefaultwd for an eCGPOMU NE, perform operations in Changing the Password of the emscomm User.

Data type: character string

Value range: ciphertext password

Default value: @010200000000ae71b062353b5285a3af913901339cd30b41675295f818b07d84651fe1a6ea40cffcff9e29b43ec6f1b17b42d6f22428

This parameter cannot be modified.

soapdefaultwd

Default password of the SOAP protocol channel of the eIMS.

NOTE:

This password is the default password for the SOAP protocol channel of all eCGPOMU NEs managed by the eIMS. (The password of the sub NE is the same as that of the corresponding eCGPOMU NE.) To modify soapdefaultwd for an eCGPOMU NE, perform operations in Changing the Password of the soapuser User.

Data type: character string

Value range: ciphertext password

Default value: @010200000000f20eee35b33b038eeaa4f8f77a4bdd49c919f54e80275e591f666c5e794809cb

This parameter cannot be modified.

eimsFtpPsd

Default password of the eimsFtpuser user of the eSight FTP system.

NOTE:

This parameter takes effect only when it is changed together with the eimsFtpuser.password and eimsFtpuser.slatValue parameters in ftpusers.properties file. For details, see Changing the Password of the eimsFtpuser User.

Data type: character string

Value range: ciphertext password

Default value: @0102000000003ec3c8f27497e24d211e6ba029d5f10fd23dea2a46fc3d930376531fdc4fc9fb

Restart

Precautions

Do not modify the configuration file unless necessary.

cipherSuiteConfig.xml

Function

This file configures the encryption suite of the SSL connection.

Path

eSight installation directory/AppBase/etc/eims/eimsne/neconnection/ssl/cipherSuiteConfig.xml

Description
Table 9-146 Parameters in cipherSuiteConfig.xml

Parameter

Description

Setting

Effective Mode

cipherSuiteList

List of certificate authentication algorithm suites.

Data type: xml

Value range: TLSv1.1, TLSv1.2.

Default value: TLSv1.1, TLSv1.2

This parameter cannot be modified.

anonCipherList

List of anonymization authentication algorithm suites.

Data type: xml

Value range: ipsi

Default value: ipsi

This parameter cannot be modified.

Precautions

Do not modify the file.

mml.properties

Function

The configuration file configures the MML protocol stack connection of the active eIMS device.

Path

eSight installation directory/AppBase/etc/eims/eimsne/mml.properties

Description
Table 9-147 Parameters in mml.properties

Parameter

Description

Setting

Effective Mode

sslksps

Indicates the KeyStore password of the active device.

Data type: character string

Value range: ciphertext password

Modification method: Use the reversible Advanced Encryption Standard (AES) algorithm. For details, see Changing the Collaborations Passwords.

Restart

ssltsps

Indicates the TrustStore password of the active device.

Data type: character string

Value range: ciphertext password

Modification method: Use the reversible Advanced Encryption Standard (AES) algorithm. For details, see Changing the Collaborations Passwords.

Restart

Precautions

None

common.properties(eIMS)

Function

The configuration file configures the eIMS management.

Path

eSight installation directory/AppBase/etc/eims/common.properties

Description
Table 9-148 Configuration items in common.properties

Parameter

Description

Setting

Effective Mode

eims.menu.display

Indicates whether to display the eIMS management menu.

Data type: character string

Value range: true or false

Default value: false

Restart

Precautions

Do not modify the configuration file unless necessary.

If you manually modify the configuration items, restart eSight for the modifications to take effect.

Configuration Example

eims.menu.display=false

Translation
Download
Updated: 2019-06-30

Document ID: EDOC1100044373

Views: 24884

Downloads: 74

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next