Setting configuration parameter values

Depending on the configuration parameter you are setting, the parameter value can be a string, a numeric value, or a Boolean value. For example, user names and group names defined in Active Directory are specified as strings using a valid Active Directory form, such as user[@domain]. In some cases, string parameter values can include environment variables.

In general, you can specify user names in the configuration file with any of the following valid formats:

  • Standard Windows format: domain\user_name
  • Universal Principal Name (UPN): user_name@domain
  • Alternate UPN: alt_user_name@alt_domain
  • UNIX user name: user

However, you must include the domain name in the format if the user account is not in the local computer’s current Active Directory domain. In addition, if you are specifying an Active Directory logon name that contains spaces, you should use quotes around the string. For example:

adclient.hash.allow: 'marco'

Using special characters

Configuration parameter values can include the following special characters that are often used in UNIX scripts:

  • The dollar sign ($) signifies an environment variable that can be resolved to an appropriate value if recognized by the agent. Valid environment variable names can consist of alphanumeric characters and underscores.
  • A backslash (\) signifies that the next character is a literal, and is used, among other things, to specify a trailing space (\ ) or a single backslash (\\).

Boolean values are case-insensitive. The permissible values are true, yes, false, and no.

If a parameter can take multiple values, those values are separated from each other by a comma or a space. Spaces preceding or trailing each value are ignored.

Using environment variables

The values in key/value pairs can include standard shell environment variables. The variables are resolved to their current value when the Centrify agent reads the configuration file. For example, you can use the environment variable $HOSTNAME to include the local computer’s host name in any parameter value setting:

example_parameter: test_$HOSTNAME

If the name of the current managed computer is host1, the configuration parameter example_parameter takes the value test_host1.

In addition to standard environment variables, you can use the following Centrify-specific environment variables in the configuration file:

  • $ZONE is the name of the host computer’s Centrify zone.
  • $JOINNAME is the name of the host computer’s account name in Active Directory.
  • $DOMAIN is the name of the Active Directory domain to which the host computer is joined.
  • $SITE is the name of the Active Directory site for the host computer.