| Directory Services |
DSML Services for Windows maintains data about overall session characteristics as well as individual session characteristics. DSML Services for Windows monitors the following characteristics:
The total number of outstanding active sessions. If the total number reaches the maximum, and a client requests a new session, the server will reject all subsequent new session requests until the number of outstanding active sessions is less than the maximum number specified.
The number of sessions allowed for a given IP address. This characteristic can be useful for mitigating denial of service attacks.
When the client requests a session ID, the server should verify that the IP address matches the original creator of the session.
When the client requests a session ID, the server should verify that the user credentials match those of the original creator of the session.
The amount of time the session should be active before it is declared to be expired. Each client request with the session ID revitalizes the TTL. If there is no activity beyond the TTL, the session is considered to be expired. The value specified is measured in seconds.
| Parameter | Range | Default |
|---|---|---|
| Total Sessions | 0 - 512 | 100 |
| Sessions per IP | 0 - 512 | 5 |
| Use IP Matching | Yes/No | Yes |
| Use Credential Matching | Yes/No | Yes |
| Time to Live | 1 - 2147483647 | 600 |