[OPTIONS]
OLRPage=olr_page
Packages=smartpass_packages
Execute=exec_line
ExecutePrompt=exec_prompt
PrimaryWINSServer=primary_wins
SecondaryWINSServer=secondary_wins
DetectCardRemovalInterval=dcri
PortList=portlist
AccessCodeMinimumLength=acml
AccessCodeContentRule=accr
ClientSettingLockout=csl
AutoProxyEnable=ape
FIPSGuard=fipsg
StartupBanner=banner
ServerHeartbeat=heartbeat
FIPSBaseFolder=base_folder
;
;OLRPage=
; Purpose: This entry specifies the On-Line Registration URL to be
;          accessed to perform On-Line Registration.
; Default: No default
; Example: OLRPage=http://www.YourCompanyName.com:*/OLR
;           or
;          OLRPage=http://www.YourCompanyName.com:443/OLR
;
; Notes:   The wildcard asterisk (*) is used in place of a port number. 
;          Wildcarding the port allows SmartPass to scan for 
;          an open port on the user's intermediate firewall in order to
;          connect to the OLR Web page.
;
;          This entry will be used to create a menu choice for On-Line
;          Registration under Programs in the user's Start Menu.
;
;          OLR is not automatically launched after setup unless
;          the EXECUTE entry is completed below.  
;
; Packages=
; Purpose: This entry controls which of the optional packages on the
;          install disk are automatically installed.
; Default: FIPSTOKN,MCOS,SHIM
;
; Alternate packaging:
;           Packages=[Authentication Package[,[...]]][,Optional Package[,[...]]]
;
; Authentication Packages:
;            for FIPS Token authentication
;                 Packages=FIPSTOKN,MCOS(and/or STARCOS)
;            for CHIPDRIVE Card Reader authentication
;                 Packages=CHIPDRV,MCOS(and/or STARCOS)
;            for PC/Smart Card Reader authentication
;                 Packages=PCSC,MCOS(and/or STARCOS)
;            for RSA SecurID authentication
;                 Packages=SGSDI
;            for RADIUS authentication
;                 Packages=RADIUS
;            for ENTRUST authentication
;                 Packages=SGENTRUS,ENTRUST
;            for PKI authentication
;                 Packages=PKI
;            for LDAP authentication
;                 Packages=SGLDAP
;            for Windows Domain authentication
;                 Packages=WINDOMAIN
;
; Optional Packages:
;            for IPSEC-level security
;                 Packages=IPSEC
;            for IKE
;                 Packages=IKE(includes IPSEC)
;            for Winsock call interception
;                 Packages=SHIM
;            for Smart card formatting program
;                 Packages=CARDFMT
;            for Windows Drive Mapping and File Sharing
;                 Packages=SGVTDI
;
; Example: Packages=CHIPDRV,MCOS,SHIM,CARDFMT
; Notes:   Currently, the optional packages are:
;          FIPSTOKN - FIPS 140-1 compliant virtual authentication token
;
;          STARCOS  - G&D STARCOS smart card
;          MCOS     - Gemplus MCOS smart card
;
;          CHIPDRV  - TOWITOKO's CHIPDRIVE extern smart card reader
;          PCSC     - PC/Smart Card Reader
;
;          CARDFMT  - Smart card formatting program for 
;                     CHIPDRIVE or PC/SC card readers
;
;          SGSDI    - RSA SecurID authentication
;          RADIUS   - RADIUS authentication
;          SGENTRUS - Entrust authentication
;          ENTRUST  - Entrust authentication (files must be supplied by Entrust
;                     and copied to the SmartPass install disk by administrator)
;          PKI      - PKI (Public Key Infrastructure) authentication
;          SGLDAP   - LDAP (Lightweight Directory Access Protocol) authentication
;	       WINDOMAIN - Windows PDC authentication
;
;          SGVTDI  - Windows Drive Mapping and File Sharing via NetBIOS
;
;          SHIM     - Winsock call interception shim
;          IPSEC    - IPSEC network level security
;          IKE      - Internet Key Exchange(includes IPSEC)

;Execute=
; Purpose: This entry specifies what program to execute after the
;          software has been installed.
; Default: No default
; Example: Execute=vspstart -h http://www.YourCompanyName.com:443/OLR
;          or
;          Execute=vspstart -h http://www.YourCompanyName.com:*/OLR
;          will cause the On-Line Registration process to be invoked.
; Example: Execute=card_format /d
;          will cause the smart card formatting utility to be invoked.
;          The following flags can be used with the card_format program
;                 /c - format card in CHIPDRIVE external reader
;                 /m - format card in PC/Smart Card Reader
;                 /d - format card in current reader if it is a CHIPDRIVE or PC/SC         ;                      CHIPDRIVE, or PC/Smart Card Reader
; Example: Execute=card_format /d vspstart -h http://www.YourCompanyName.com:443/OLR
;          or
;          Execute=card_format /d vspstart -h http://www.YourCompanyName.com:*/OLR
;          will cause the smart card formatting utility to be invoked,
;          and on completion of that utility, it will cause On-Line Registration to
;          be invoked.
; Notes:   The named program will be invoked at the end of the install
;          process.

;ExecutePrompt=
; Purpose: This text will appear in a user prompt that asks whether the user
;          wants to invoke the program named in 'Execute'
;          after installation, or following the next reboot if the
;          installation requires one.
; Default: No default
; Example: ExecutePrompt=SmartPass On-Line Registration
; Example: ExecutePrompt=Smart Card Formatting
; Notes:   If no prompt is specified then the program will be invoked 
;          without first prompting the user.

;PrimaryWINSServer=
; Purpose: This entry configures the installation program to set the Primary 
;          WINS (Windows Internet Name Service) Server setting in the registry to 
;          the specified IP address. This setting will take effect after
;          rebooting.
; Default: No default. If not given, the registry will remain unchanged.
; Example: PrimaryWINSServer=10.0.0.222
; Notes:   This is only available when the IPSec package is installed
;          

;SecondaryWINSServer=
; Purpose: This entry configures the installation program to set the Secondary
;          WINS (Windows Internet Name Service) Server setting in the registry to 
;          the specified IP address. This setting will take effect after
;          rebooting.
; Default: No default
; Example: SecondaryWINSServer=10.0.0.223
; Notes:   This is only available when the IPSec package is installed
;          

;DetectCardRemovalInterval=
; Purpose: This entry configures the installation program to set the time interval
;          for detecting smart card removal.
; Default: No default
; Valid Range: 10 - 3600 //seconds unit
; Example: DetectCardRemovalInterval=30 ; 30 seconds
;

;PortList=value
; Purpose: This entry configures which ports, and in which order, that SmartPass
;          will try to use to navigate through a firewall to initiate a secure session to
;          the SmartGate Server.
; Default: 443,3845,80
; Valid Range: A comma-delimited list of integer values between 1 and 65536
; Example: PortList=443,3845,80,6830
; Caution: Do NOT use port 443 or 80 if either a Web Server or a SSL Server
;          is running on your SmartGate Server.

;AccessCodeMinimumLength=value
; Purpose: This entry configures minimum Access Code length for the virtual (FIPSTOKN) and
;          physical smartcard FIPS tokens.
; Default: 4
; Valid Range : 4 - 16
; Example: AccessCodeMinimumLength=8

;AccessCodeContentRule=value
; Purpose: This entry configures Access Code content rule for the virtual (FIPSTOKN) and
;          physical smartcard FIPS Tokens.
;       0  No restrictions in use of alphabetic and/or numeric
;	   characters to make up Access Code
;       1  Access Code must be a mixture of alphabetic and
;          numeric characters
;       2  Access Code must be a mixture of both uppercase and
;          lowercase alphabetic and numeric characters
;       3  Access Code must be a mixture of alphabetic and 
;          numeric characters, with no repeating patterns
;       4  Access Code must be a mixture of both uppercase and
;          lowercase alphabetic and numeric characters, with no
;          repeating patterns
; Default: 0
; Valid Range : 0 - 4
; Example: AccessCodeContentRule=1

;ClientSettingLockout=value
; Purpose: This entry configures client settings lockout. If the value is set to
;          YES, then end user will be unable to change configuration options.         
; Default: NO
; Valid Range : YES, NO
; Example: ClientSettingLockout=YES

;AutoProxyEnable=value
; Purpose: This entry configures Automatic Proxy settings. If the value is set to
;          YES, then SmartPass will automatically grab the proxy settings from the Web Browser.
;          NO, then this feature will be disabled.
; Default: YES
; Valid Range : YES, NO
; Example: AutoProxyEnable=NO

;FIPSGUARD=value
; Purpose: This entry configures FIPSGUARD settings. If the value is set to
;          YES, then SmartPass will look up the bad try count and when it reaches to 3, SmartPass will wipe out the FIPS token.
;          NO,  then this feature will be disabled.
; Default: NO
; Valid Range : YES, NO
; Example: FIPSGUARD=YES

;StartupBanner=filename
; Purpose: This entry configures a startup banner bitmap file.  The bitmap specified must be in the setup folder.
;          So you should use the file name only
;          (specifying full pathname of a file may cause installation problem).
; Default: Empty
; Example: StartupBanner=mybanner.bmp

;ServerHeartbeat=value
; Purpose: This entry configures the installation program to set the time interval
;          for Server Heart beat checking.
; Default: 0 (disable this feature)
; Valid Range: 0 - 999 (minutes)
; Example: ServerHeartbeat=30

;FIPSBaseFolder=value
; Purpose: This entry configures the FIPS base folder where all FIPS token files are stored
; Default: None
; Example: FIPSBaseFolder=I:\Secured Data