forked from opennode/opennode-management
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathopennode-oms.conf
84 lines (65 loc) · 2.4 KB
/
opennode-oms.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
[general]
# If enabled, will log outputs of every command running in detached mode.
log_detached = no
zabbix_enabled = yes
# if not set, the base dir is the parent of the bin/* executables (bin/omsd, bin/passwd, ...)
#base_dir = ...
[rest]
port = 8080
[ssh]
port = 6022
[db]
# Path of the zeodb directory relative to oms installation dir
path = db
# Can be either `embedded`, `zeo` or `memory`
#
# * ``embedded`` uses an exclusively locked zodb instance
# * ``zeo`` uses a zodb instance which can be shared among processes
# * ``memory`` uses an in-RAM zodb instance which is not persisted
storage_type = zeo
# How often should the zodb packing be performed (default every 5 minutes)
pack_interval = 300
# How many times a transaction is retried in cases of conflict
conflict_retries = 10
[logging]
file = omsd.log
[auth]
passwd_file = oms_passwd
permissions_file = oms_permissions
groups_file = oms_groups
security_proxy_omsh = yes
security_proxy_rest = yes
# If enabled, all model attributes have to have security rights
# defined with the permissions() directive.
# If disabled, an audit log will be generated for all unsecured attributes.
enforce_attribute_rights_definition = no
# If enabled it will audit all access to objects for whose a security proxy
# is created but they don't have a permissions() directive (Including non models). Slow
audit_all_missing_attribute_rights_definitions = yes
# use PAM and NSS for auth (overrides local oms_passwd file)
use_pam = yes
# use Keystone CMS tokens for REST authentication
use_keystone = no
[zabbix]
server = http://10.211.55.6:10000/zabbix
username = admin
password = zabbix
hostgroup.id = 7
template.id = 10001
[debug]
trace_transactions = no
print_exceptions = no
deferred_debug = no
memory_profiler = no
memory_profiler_interval = 30
# monkeypatch epoll reactor to debug
debug_epollreactor = no
[keystone]
# filename with a certificate of the keypair used for signing keystone CMS token
signing_cert_file_name = /Users/ilja/stoxy-demo/signing_cert.pem
# filename of a CA certificate for validation
ca_file_name = /Users/ilja/stoxy-demo/cacert.pem
# CLI command for running openssl. It has to be sufficienty new to support cms commands.
# E.g. default version on OS X 10.8 is older, a newer can be installed via homebrew:
# 'brew install openssl' and would be located at /usr/local/Cellar/openssl/1.0.1e/bin/openssl .
openssl_cmd = /usr/local/Cellar/openssl/1.0.1e/bin/openssl