Server Properties Reference
|Transport Credential||The transport credential is used to decrypt requests received from the client and sign the responses sent back. Be sure to configure the AdobeInitial.properties file appropriately with both the path to the transport credential file, as well as the encrypted PKCS12 password.|
|Individualization CA Credential||The Individualization server uses the Individualization CA credential to sign the machine certificates that it issues. Be sure to configure the AdobeInitial.properties file appropriately with both the path to the I15N CA credential file, as well as the encrypted PKCS12 password.|
|Individualization Encryption Credential||The Individualization server uses the Encryption credential to encrypt sensitive files that need to be transmitted to the Individualization servers. For example, this cert supports license migration and is also used to encrypt the DRM private keys for the Individualization servers.|
|Content Cache||These settings control the location from which the Individualization server downloads content and where the content is cached on disk. The Individualization server will check the content server for new content once at startup, then at the frequency/time specified by these properties.
For the On Premises Individualization Server, we have included an initial set of content cache data. Be sure to copy the CONTENTS of the cache folder (not the cache folder itself) to the configured AdobeInitial.properties contentServer.localDirectory location.
Please be sure to read the section CRL and ECI Files about keeping the cache up to date.
|Individualization CA CRL|
This Certificate Revocation List (CRL) distribution point is included within each machine certificate issued by the Individualization server. During machine certificate validation on the license server, the CRL will be downloaded from the distribution point listed in the certificate (or read from the cache if already downloaded) and checked to be sure the certificate has not been revoked. It is recommended to perform this server configuration change after going through the process of creating and deploying the Individualization CA CRL. Restart the Individualization server after any configuration change.
To set the URL for the CRL distribution point, you will need to set the AdobeInitial.properties cert.machine.crldp field.
cert.machine.crldp__DEV= tps://onprem-individualization.com CRL/onprem-individualization-ca.crl
The License Server should automatically download this CRL, once a license request is handled.
Note: This distribution point is not checked by Primetime DRM for validity. You must verify that this URL is valid. Errors resulting from an invalid URL will not appear until validation errors appear from the license server.
|Logging||Configure the AdobeInitial.properties for logging as necessary.|
Key Generation Server