These settings specify configuration options for the Nginx service.

Note: Settings in this section are included so that Carbon Black EDR Unified View server's internal components can read them. However, the Nginx service has a separate configuration file that has a format that prevents sourcing standard bash property files such as this one. Therefore, for any change in this section, you must make the corresponding change in the /etc/cb/nginx/conf.d/cb.conf file.

Name

Description

NginxWebApiHttpPort=443

TCP port on which Web UI/API HTTP endpoint listens.

FlaskSecret=[unique_string]

Private key for encrypting cookies that the Carbon Black EDR Unified View web API uses.

CSRF_DISABLE=False

CSRF_COOKIE_NAME=_xsrf_token

CSRF_HEADER_NAME=X-XSRFToken

XSRF protection parameters.

SESSION_COOKIE_SECURE=True

Toggles the secure flag for the session cookie. If True (the default and recommended setting), the session requires https. If False, the session works with either http or https.

FailedLogonLockoutCount=10

The number of times a user can fail authentication before the account is locked.

AccountUnlockInterval=30

The number of minutes before a locked account is unlocked.

UserActivityQuota=10000

UserActivityQuotaDelta=.1

The threshold at which the UserActivity table is resized, based on the value of UserActivityQuotaDelta .

For example, if UserActivityQuota is set to 10000, and UserActivityQuotaDelta is set to .1, when the database grows to 11000 it will shrink back to 10000. This ensures that at least 10,000 of the latest records remain available.

SSOConfig=/etc/cb/sso/sso.conf

Enables a Carbon Black EDR Unified View server integration that has an external single sign-on (SSO) provider by providing a path to an SSO configuration file.

MaxSyslogSenderMessageSize=1024

Configures the maximum syslog message size for cb-unifiedview syslog notifications. This setting does not automatically adjust the maximum message size setting in rsyslog configuration (default 1KB).

MaxCbLoggingMessageSize=2048

Configures the maximum syslog message size for cb-unifiedview log output under / var/log/cb. This configuration does not automatically adjust the maximum message size setting in rsyslog configuration (default 2KB).