Capture Agent has a number of parameters you can modify. After you install the agent, each of these parameters is assigned a default value, as described in the following table:
Parameter |
Description |
Default value |
Maximum connection point validity for Capture Agent Service |
Determines the period of time (in hours) during which a connection between Capture Agent and Synchronization Service remains valid. |
24 hours |
Interval between connection retries |
Determines the time interval (in minutes) during which Capture Agent tries to reconnect to Synchronization Service. |
10 minutes |
Maximum duration of a connection attempt |
Determines the period of time (in days) during which Capture Agent tries to connect to Synchronization Service to send the information about changed user passwords. During this period Capture Agent stores the user passwords to be synchronized in an encrypted file. |
7 days |
Certificate to encrypt Capture Agent traffic |
Specifies a certificate for encrypting the password sync data transferred between Capture Agent and Synchronization Service. For more information, see Specifying a custom certificate for encrypting password sync traffic. |
By default, a built-in certificate is used. |
Connection Point 1 |
Define the Synchronization Service instances to which Capture Agent provides information about changed user passwords. |
If none of these parameters is set, Capture Agent looks for available instances of the Synchronization Service in the following container: CN=Active Roles Sync Service,CN=One Identity,CN=System,DC=<domain name> |
Connection Point 2 | ||
Connection Point 3 | ||
Connection Point 4 | ||
Connection Point 5 | ||
Connection Point 6 | ||
Connection Point 7 |
You can modify the default values of these parameters by using Group Policy and the Administrative Template supplied with the Synchronization Service. The next steps assume that all the domain controllers where the Capture Agent is installed are held within organizational units.