Keyfactor Command Web Agent Services

The WebAgentServices appsettings.json configuration file allows you to change default orchestratorClosed Keyfactor orchestrators perform a variety of functions, including managing certificate stores and SSH key stores. APIClosed A set of functions to allow creation of applications. Keyfactor offers the Keyfactor API, which allows third-party software to integrate with the advanced certificate enrollment and management features of Keyfactor Command. installation configuration settings.

To update the appsettings.json file:

  1. Navigate to the WebAgentServices/Configuration folder on your server, located by default at:

    C:\Program Files\Keyfactor\Keyfactor Platform\WebAgentServices\Configuration
  2. Browse to open the appsettings.json file in a text editor (e.g. Notepad) and adjust the values as needed.
  3. Save the files.

Table 79: Appsetting.json File Parameters - WebAgentServices

Setting Description
Active Directory Enforced This should be set to false if you are not using Active Directory. An IIS reset will be required to apply this setting if you change it.
Check Auth Certificate Revocation Status Enter true to check the revocation status of the certificate provided for client certificate authorization, if being used, otherwise, enter false. The default is true.
Extensions Directory Enter the file path to the extensions to be loaded by the extension loader (for registration handler, workflow step, etc... support). The default value is Extensions (translates to: C:/Program Files/Keyfactor/Keyfactor Platform/WebAgentServices/Extensions)
Max Request Size Kb This application setting is only used for the Orchestrator CA Sync controller. It is used to configure the CA sync batch size. We used to just grab the maximum request size from the IIS configuration settings, but that can no longer be done in .NET 6. The default is 5000.
NLog Config File Enter the file path to the Nlog_Orchestrators.config file. The default is C:/Program Files\Keyfactor/Keyfactor Platform/WebAgentServices/Configuration
Sql Retry Configuration SQL retry settings (seeKeyfactor Command Changing SQL Retry Settings for more information).
Setting Description
Number Of Tries The number of times it will try the connection before an exception is thrown
Delta Time The preferred gap time (in seconds) to delay before retry
Max Time IntervalThe maximum gap time (in seconds) for each delay time before retry
Idp Initialization Timeout Seconds Duration of timeout (in seconds) used to make sure all authentication schemes are available before we allow users to login.

Figure 408: Sample WebAgentServices Appsettings.json File