MMP Reference
From MsgServerDocWiki
| Option | Description | ||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| authcachesize |
The Messaging Server can cache the results of LDAP user lookups and successful authentication (e.g., when logging into IMAP, POP or SMTP). The authcachesize option defines the number of authentication user cache entries. A higher setting for authcachesize improves performance while using more memory. A lower setting reduces performance and reduces the amount of memory used. The MMP presently uses the LdapCacheSize option for this purpose. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| authcachettl (seconds) |
The Messaging Server can cache the results of successful LDAP authentication (e.g., when logging into IMAP, POP or SMTP or when the MMP has preauth enabled). Authcachettl defines the length of time that authentication cache entries are preserved in seconds. Lower values will reduce performance, but result in faster recognition of server password changes. Higher values will increase performance, but result in delayed recognition of server password changes. Changes made to a userPassword entry in LDAP are not seen until the entry's time-to-live (TTL) has expired. If you wish to have password changes seen at least every 15 minutes, then set this value to 900. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| authenticationldapattributes |
A space-separated list of additional LDAP user attributes to look up and pass to the third-party authentication server. To enable support for a third-party authentication server, set the authenticationserver MMP option. For developer instructions and SDK see the directory msg_svr_base/examples/tpauth. This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| authenticationserver |
This specifies the hostname and port for a third-party authentication service to use with the MMP. The recommended value is 127.0.0.1:56 when a third-party authentication service is available on the same machine as the MMP. For developer instructions and SDK see the directory msg_svr_base/examples/tpauth. When not set, the MMP will authenticate via LDAP. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| authservice |
If authservice is set to 1 and authservicettl is positive, the MMP will allow queries about who is currently logged into the MMP, for the purpose of POP before SMTP relay authentication. This option should almost never be turned on globally; you should configure this by virtual domain. Setting the authservice parameter to 1 permits probing of the authservice cache with the xqueryauth ip-address command over the POP protocol. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| authservicettl (seconds) |
The MMP can be configured to remember from which IP address a particular user has authenticated for a period of time. Authservicettl controls that period of time. This is primarily used for POP before SMTP service, in which case this should be a value greater than 0. A setting of -1 will disable this feature. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| backsideport |
The port the MMP will use when connecting to a message store server.
This option lets you run a multiplexor and a store server on the same
machine, with the store server on a different port. The
This option may appear in the following config file(s): The default value for the imapproxy is: The default value for the popproxy is: | ||||||||||||||||||||||||||||
| Banner replacement string. The MMP will use the string you specify for its greeting line. The default banner string contains the software name and version information. This option may appear in the following config file(s): | |||||||||||||||||||||||||||||
| bgdecay (seconds) |
BGDecay represents the time in seconds it takes for a BadGuy's penalty to be forgiven. See bgpenalty for more information. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| bgexcluded |
BGExcluded represents a list of excluded IP/mask pairs, or the name of a file to read for these pairs. These client addresses will not be penalized for authentication failure (there is no default value). This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| bglinear |
BGLinear defines whether a BadGuy's penalty decays linearly over time (1),
or is a step function on expiration (0). See This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| bgmax |
The maximum number of IP addresses associated with authentication failures to keep track of simultaneously. See This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| bgmaxbadness (seconds) |
BGMaxBadness is the maximum length of time in seconds for the authentication delay which occurs after a series of failed authentication attempts. See This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| bgpenalty (seconds) |
When an authentication failure occurs from a particular client IP address, subsequent authentication attempts from that IP address are treated as "BadGuys" and are delayed. If an authentication failure is followed by a successful authentication, the successful authentication is delayed, but the IP address ceases to be treated as a "BadGuy" for subsequent attempts. BGPenalty is the length of time in seconds added to the authentication delay after each failed authentication. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| binddn |
Distinguished Name used by the MMP to authenticate to the Directory
Server. For schema 1, the The Messaging Server default directory ACIs require a bind to authenticate users against the Directory Server. This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| bindpass |
Password the MMP uses in conjunction with the This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| canonicalvirtualdomaindelim |
Canonical virtual domain delimiter. The character used by the POP and IMAP proxy to separate the user ID from the appended virtual domain when replaying the user name to the message store server. The default is @, so user IDs passed to the message store servers have the form userid@virtual.domain. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| capability |
Capability replacement string. The MMP will use the string you specify for Capability instead of its default (own) capability to tell IMAP clients what it (or the servers behind it) can do. This variable has no effect in POP3. There is no need to include STARTTLS and AUTH= extensions as they are added automatically based on the other relevant MMP configuration settings. There is no need to adjust this string if the backend IMAP servers
are entirely Sun servers from the same version of the messaging server
installer. Otherwise, it is important to specify a capability list that
includes only the features supported by all the backend IMAP servers.
The appropriate string can be determined by telnetting to port 143 on
each kind of backend server and entering the command The EhloKeywords option provides a roughly-equivalent function for the SMTP Submit proxy. Updated in release: 7 Update 3 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| certmap |
The certmapfile may contain multiple certificate maps. This specifies which certificate map to use for a given virtual domain. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| clientlookup |
Performs a DNS reverse lookup on the client IP address when set to 1. The reverse lookup is performed unconditionally, so the SMTP relay server does not need to perform it. This option may be set on a per hosted domain basis. Note that a DNS lookup is performed regardless of this setting if hostnames are used in a global tcpaccess filter or a per-domain or per-user access filter. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| connecttimeout (seconds) | How long the MMP should wait for a connection to be established to a back-end mailstore (seconds). Introduced to MMP in release: 7 Update 3 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| connlimits |
Maximum number of connections per IP address for the selected server. The syntax is: 'realm1,realm2,...' where a realm has the form of address ranges and maximum number of connections expressed as: 'IP|MASK:NUM'. There should be at least 1 realm of the form: '0.0.0.0|0.0.0.0:n' to cover the default case. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| connrejectthreshold |
This specifies the number of connections to accept before rejecting client connections with a soft error at connection time. The default value is computed based on the operating system file descriptor limits for the MMP server process, or 2000 if such file descriptor limits can not be determined. If this is set too high, connections can fail with a 'Too many open files' error. The default calculation is the file descriptor limit minus 64 (to leave space for log files, LDAP connection pools, internal pipes, etc) divided by 2. This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| debugkeys |
A space-separated list of keywords used to enable various optional debugging facilities. Currently recognized keywords include:
Updated in release: future This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| defaultdomain |
When POP, IMAP and SMTP users authenticate, they typically provide an
unqualified user ID (a user ID without a domain portion). The value of
the This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| domainsearchformat |
A printf-style format string with which to construct Users/Groups
LDAP queries for the user's mailhost when %s (userid+virtualdomain) %U (userid only) %V (virtual domain only) %C (client IP address) %S (server IP address) %D (client cert subject DN) %o (original user as passed from client) This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| ehlokeywords |
A list of EHLO extension keywords for the proxy to pass through to the client, in addition to the default set. The MMP removes any unrecognized EHLO keywords from the EHLO list returned by an SMTP relay. EhloKeywords specifies additional EHLO keywords which should not be removed from the list. The default is empty, but the SMTP Submit proxy supports the following keywords (there is no need to list them in this option): 8BITMIME, PIPELINING, ENHANCEDSTATUSCODES, EXPN, HELP, ETRN, SIZE, STARTTLS, AUTH. This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| expirytime |
Maximum time in seconds a log file is kept. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| failovertimeout (seconds) |
This option specifies how many seconds the MMP will wait for an SMTP server connection prior to failing over to the next SMTP server in the list. If a connection to an SMTP relay fails, the MMP avoids trying that relay for a number of minutes equivalent to the failover time-out. For example, if the failover time-out is 10 seconds, and a relay fails, the MMP does not try that relay again for 10 minutes. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| filemode |
File mode used to create log files in octal. This will be masked with octal 0666 and the process umask to set actual log file permissions. If you want a process with a different userid but in the same group as the Messaging Server user to have read access to log files, use 0640. Introduced in release: future This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| flushinterval |
Time interval in seconds between logfile buffer flushes. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| hosteddomains |
Whether the MMP should use Hosted Domains. If you are using the Sun Messaging Server directory schema (Sun LDAP Schema, v1 or Sun LDAP Schema, v2), this should be set to the default. If set to 0, then the MMP assumes the server supports only one domain and LdapUrl points to a directory subtree containing all users supported by the server, each user with a unique UID. Setting HostedDomains to "0" is not recommended as even a small company is likely to eventually go through a name change or acquisition where support for multiple domains would be helpful. When set to 1, the MMP honors the following additional options from the MTA's option.dat configuration file: ldap_schemalevel ldap_domain_filter_schema1 ldap_domain_filter_schema2 ldap_attr_domain1_schema2 ldap_attr_domain2_schema2 ldap_global_config_templates ldap_attr_domain_search_filter ldap_domain_attr_basedn ldap_domain_attr_canonical ldap_domain_attr_alias These settings may be used to enable Sun LDAP Schema, v2 with the MMP. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| ipv6-in |
When set to a value of 1, this option instructs Messaging Server to accept inbound IPv6 connections for all services provided that the host has at least one network interface configured for IPv6. Services specifically configured to listen on only IPv4 interfaces cannot also accept inbound IPv6 connections. When set to a value of 0, inbound IPv6 connections are not allowed. Inbound IPv4 connections will always be permitted. Introduced in release: 7 Update 1 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| ipv6-out |
When set to a value of 1, this option instructs Messaging Server to attempt outbound IPv6 connections for all services provided that the host has at least one network interface configured for IPv6. Services specifically configured to bind their source IP address only to IPv4 interfaces cannot attempt IPv6 outbound connections. For example, an SMTP client bound to a specific IPv4 interface cannot then establish an outbound IPv6 connection. When set to a value of 0, outbound IPv6 connections are not allowed. When set to a value of 1, outbound services will attempt DNS lookups of both
A and AAAA records. Connection attempts will then be made in the order dictated
by the Introduced in release: 7 Update 1 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| ipv6-sortorder |
Controls the order in which IPv4 (A) and IPv6 (AAAA) DNS address records are used when attempting connections to other named systems.
Introduced in release: 7 Update 1 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| langlist |
This controls the list of supported languages returned by the IMAP LANGUAGE extension when issued to the MMP prior to authentication. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| ldapcachesize |
The MMP can cache results of user searches. The
This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| ldapcachettl (seconds) |
The MMP can cache results of user searches. The
This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| ldappendingoplimit |
The number of in-progress LDAP connections the MMP will allow before it will delay incoming connections to wait for previous LDAP operations to complete. This prevents a denial-of-service attack on the MMP from impacting the LDAP server. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| ldaprefreshinterval (seconds) |
Seconds that the MMP will keep a connection open to the LDAP server. When the MMP notices the refresh interval has passed, the MMP will close the LDAP connection and open a new one. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| ldaptimeout (seconds) |
Seconds the MMP will wait for an LDAP operation to complete before it will attempt a failover to a backup LDAP server or fail the operation. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| ldapurl |
An LDAP URL pointing to the top of the site's DC directory tree (used
by schema 1), if SSL (LDAPS) is supported, but the SSL configuration must also be correct, and SSL-enabled. To enable failover, the host part of the URL may be a space-separated list of hosts. Be sure to enclose the entire URL in double-quotes if it contains a space. For example: "ldap://ldap1.example.com ldap2.example.com/o=internet" This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| logdir |
Directory path for log files. If this is not specified, log files
will be placed in the This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| loglevel | Logging level can be: nolog, emergency, alert, crticial, error, warning, notice, information or debug. The MMP will not generate messages with priority higher than 'error'. For backwards compatibility, you may use integer settings from 3 to 7 for 'error' to 'debug' respectively, or 0 for nolog. Updated in release: 7 Update 1 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| logtype |
Ignored. Set to either NscpLog or syslog. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| mailhostattrs |
Space-separated list of LDAP attributes identifying the user's mail host. The multiplexor tries each attribute returned by the search in the order specified by the list to identify the mail store where that user's mail lives. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| maxconcurrentconnectionattempts |
Number of outstanding connection attempts permitted to the same backend mailstore. If this is exceeded, users on that mailstore will have their connections rejected with a temporary service outage error. This limit prevents a DNS or mailstore outage of one server from consuming all the MMP worker threads. Introduced in release: 7 Update 3 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| maxlogfiles |
Maximum number of log files to retain. Introduced to MMP in release: 7 Update 1 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| maxlogfilesize |
Maximum size in bytes of each log file. Introduced to MMP in release: 7 Update 1 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| maxlogsize |
Maximum total size in bytes of all log files. Introduced to MMP in release: 7 Update 1 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| maxthreads | Maximum number of threads allowed per server process for the selected server. The MMP does not count worker threads attempting to lookup or connect to a back-end server against this limit, see the separate maxconcurrentconnectionattempts option to limit such connections.Introduced to MMP in release: 7 Update 3 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| popbeforesmtpkludgechannel |
Name of an MTA channel to use for POP before SMTP authorized
connections. The default is empty and the typical setting for users who
want to enable POP before SMTP is This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| preauth |
Enables pre-authentication by the MMP. When When using This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| preauthtimeout (seconds) |
MMP session timeout prior to authentication. Introduced in release: 6.3 patch 7 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| replayformat |
Printf-style format string that says how to construct the user ID for replay to the Message Store server. Valid escape sequences are: %s (user@domain where '@' is the canonical domain delimiter) %o (original user as sent by the client) %U (userid only) %V (virtual domain only) %A[attr] (value of user's attribute "attr") For example, joe@siroe.com For the MMP, when using HostedDomains, the mailAccessProxyReplay attribute in the domain node in the LDAP server overrides this option. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| restrictplainpasswords |
When set to 1, this will forbid use of plaintext passwords unless an SSL/TLS security layer is active. Introduced in release: 5.2 patch 2 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| rollovertime |
The length of time in seconds to keep a log file active. That is, the maximum period of time to record data to a single log file. Introduced to MMP in release: 7 Update 1 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| searchformat |
A printf-style format string with which to construct Users/Groups
LDAP queries for the user's mailhost when %s (userid+virtualdomain) %U (userid only) %V (virtual domain only) %C (client IP address) %S (server IP address) %D (client cert subject DN) %o (original user as passed from client) This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| serverdownalert |
String returned to client in an IMAP ALERT message when the MMP cannot connect to a user's store server. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| smtpproxypassword |
Password the MMP uses to authorize source channel changes on the SMTP
relay servers. This option is mandatory for the MMP's SMTP Submit proxy,
has no default, and must match the This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| smtprelays |
A space-separated list of SMTP relay server hostnames (with optional port) to use for round-robin relay. These relays must support the XPEHLO extension. This option is mandatory with no default. For example: sesta.example.com:485 gonzo.example.com mothra.example.com This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| spoofemptymailbox |
If this option is set to This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| spoofmessagefile |
The file to use for POP3 inbox spoofing. The MMP can imitate a base-functionality POP3 server in case it can't connect to a client's store machine. In such a situation, the MMP creates an inbox for the user and places this one message into it. The format of the message contained in this file should conform to dot-stuffed RFC-822 (including the final '.'). By default, there is no spoof message file. This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| ssladjustciphersuites | Add, remove or set availabile SSL cipher suites For more information see ssladjustciphersuites Option. This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| sslbacksideport |
Port number to which the MMP will try to connect on the store servers using SSL if an SSL connection was made to the MMP. If this parameter is not set, the MMP will not use SSL when connecting to the store. There are no default values, but ports 993 and 995 are recommended for IMAP and POP, respectively. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| sslcachedir |
SSL session cache directory used to track SSL sessions across multiple connections. If this is empty or not set, the MMP will use the standard configuration directory as the session cache directory. NOTE: this option must be the same in ImapProxyAService.cfg, PopProxyAService.cfg and SmtpProxyAService.cfg or results are unpredictable. This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| sslcertnicknames |
Nicknames of the certificates in the SSL certificate database to offer as the server certificate. Only one nickname of each certificate type is permitted (e.g., one RSA certificate, one DSS certificate) so normally only one will be specified. NOTE: This option should either be explicit in all three of the following configuration files: ImapProxyAService.cfg, PopProxyAService.cfg and SmtpProxyAService.cfg or present in only one of them. If it's present in two but missing from the third, then that third service will unpredictably inherit this setting from one of the other two configuration files. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| sslcertprefix |
Filename prefix to the SSL certificate database file. The certificate database file must be in the directory specified by the sslcachedir setting. No prefix will be used by default. NOTE: this option must be the same in ImapProxyAService.cfg, PopProxyAService.cfg and SmtpProxyAService.cfg or results are unpredictable. This option may appear in the following config file(s): The default value is the empty string | ||||||||||||||||||||||||||||
| sslenable |
Whether SSL is enabled for the specified proxy service (via the STARTTLS command). This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| sslkeyprefix |
Filename prefix to the SSL key database file. The key database file must be in the directory specified by the sslcachedir setting. No prefix will be used by default. NOTE: this option must be the same in ImapProxyAService.cfg, PopProxyAService.cfg and SmtpProxyAService.cfg or results are unpredictable. This option may appear in the following config file(s): The default value is the empty string | ||||||||||||||||||||||||||||
| sslsecmodfile |
Security module database file name. If you have hardware accelerators for SSL ciphers, this file describes them to the Messaging Server. NOTE: this option must be the same in ImapProxyAService.cfg, PopProxyAService.cfg and SmtpProxyAService.cfg or results are unpredictable. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| storeadmin |
This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| storeadminpass |
Password for the store administrator used by MMP proxy authentication necessary to support SSL client certificates and RFC 2595-style proxy authentication. There is no default for This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| syslogfacility |
Specifies whether or not logging is directed to the syslog service. The values can be none, user, mail, daemon, or local0 to local7. If the value is set, messages are logged to the syslog facility corresponding to the set value and all other log file service options are ignored. The special value of none disables use of the syslog service. Introduced to MMP in release: 7 Update 1 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| tcpaccess |
Wrap-style filters that describes TCP access control for the MMP (globally). See "Configuring Client Access to POP, IMAP, and HTTP Services" in the "Configuring Security and Access Control" chapter of the Messaging Server Administrator's Guide for the syntax description of this option. This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| tcpaccessattr |
Per-user attribute that contains a wrap-style filter describing the TCP access control for the user. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| timeout (seconds) | Session timeout in seconds. To be standards-compliant, the value of this option must not be set lower than 1800 seconds (30 minutes) for IMAP, 600 seconds (10 minutes) for POP or SMTP. This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| usenslog |
The MMP supports logging via nslog format (the same logging used by imapd and popd) or the legacy MMP log file format. Set this option to 0 to use the legacy format. Introduced in release: 7 Update 1 This option may appear in the following config file(s): The default value is: | ||||||||||||||||||||||||||||
| usergroupdn |
This specifies the baseDN for user, group and domain searches in Sun LDAP Schema, v2 mode. It is also used for client certificate mapping lookups in Sun LDAP Schema, v1 mode. Introduced in release: 6.0 This option may appear in the following config file(s): | ||||||||||||||||||||||||||||
| virtualdomaindelim |
String of acceptable virtual domain delimiters. Any character in this string will be treated as a domain delimiter in a user ID received by the MMP. (The MMP searches user IDs from the end.) This option may appear in the following config file(s): The default value is: |
