Server Settings - Settings Summary

Overview

The Settings Summary page provides a comprehensive, read-only view of all ColdFusion server configuration settings in one centralized location. This page is invaluable for quickly reviewing your server's configuration, documenting settings, troubleshooting issues, and auditing changes without navigating through multiple administrator sections.

This summary is particularly useful when working with support teams, migrating servers, or comparing configurations between development, staging, and production environments.

Summary Categories

The Settings Summary organizes all server settings into logical categories for easy reference:

Server Settings

• Request Settings: Request timeout, throttle settings, request size limits
• Template Settings: Template cache size, trusted cache, cache settings
• Component Cache: Component cache settings and trusted cache status
• Client Variables: Default storage mechanism and purge settings
• Memory Variables: Session, application, and session timeout values
• Mappings: ColdFusion and custom mappings configured
• Mail Server: Mail server configuration and SMTP settings
• Charting: Chart cache location and threading settings
• Document Service: Document conversion service configuration
• Font Management: Registered fonts and font directories
• WebSocket: WebSocket server status, port, and SSL settings

Data & Services

• Data Sources: All configured database connections and their drivers
• Caching: Object cache, query cache, and caching service settings
• Web Services: Web service and Flash Remoting configuration
• REST Services: REST service registrations and settings
• Solr Collections: Configured Solr search collections

Debugging & Logging

• Debugging: Enabled status, IP restrictions, debug output options
• Logging: Log settings, directories, and maximum file sizes
• Log Files: List of active log files and their locations
• Scheduled Tasks: All configured scheduled tasks and their status
• Probes: Configured monitoring probes and health checks

Security Settings

• Sandbox Security: Enabled/disabled status and configured sandboxes
• User Manager: Configured administrator users and roles
• Allowed IP Addresses: IP restrictions for administrator access
• Secure Profile: Security profile status and settings
• CSRF Protection: Cross-Site Request Forgery protection settings

Performance & Monitoring

• Caching: Template cache, query cache, and object cache settings
• Request Tuning: Simultaneous request limits, queue settings
• Timeout Settings: Request, session, and application timeouts
• JVM Settings: Java heap size, JVM arguments, and classpath

Using the Settings Summary

Documentation and Auditing

The Settings Summary is perfect for creating configuration documentation:

• Print or export the summary for offline documentation
• Take screenshots for change control documentation
• Compare settings before and after changes
• Document configurations for disaster recovery procedures
• Provide to support teams when troubleshooting issues

Migration and Cloning

When migrating or cloning servers:

• Export settings from source server summary
• Use as checklist when configuring new server
• Verify all settings match after migration
• Identify environment-specific settings that need adjustment
• Document differences between environments

Troubleshooting

Use the summary to diagnose configuration issues:

• Quickly identify misconfigured settings
• Verify settings match expected values
• Compare working vs. non-working server configurations
• Check for settings that may conflict with each other
• Identify settings changed from defaults

Security Auditing

Review security-related configurations:

• Verify debugging is disabled in production
• Check IP restrictions are properly configured
• Confirm secure profile settings are enabled
• Review sandbox security configurations
• Validate SSL/TLS settings for services

Summary Export Options

Manual Documentation

Create manual documentation from the summary:

• Use browser print function to save as PDF
• Take screenshots of specific sections
• Copy relevant sections to documentation tools
• Include in runbooks and operational procedures

Programmatic Access

Access settings programmatically for automation:

• Use ColdFusion Administrator API
• Query settings via CFML code
• Integrate with configuration management tools
• Build automated compliance checking scripts

Key Settings to Review

Production Checklist

Critical settings to verify in production environments:

• Debugging Enabled: Should be DISABLED in production
• Robust Exception Information: Should be DISABLED in production
• Trusted Cache: Should be ENABLED in production
• Save Class Files: Should be ENABLED in production
• Request Timeout: Verify appropriate timeout values
• Session Timeout: Check session management settings
• Template Cache Size: Ensure sufficient cache allocation
• Secure Profile: Verify security settings are enabled

Performance Settings

Settings that significantly impact performance:

• Template Cache: Size and trusted cache status
• Component Cache: Component caching enabled
• Query Cache: Maximum cached queries setting
• Maximum Simultaneous Requests: Thread pool sizing
• JVM Heap Size: Maximum and minimum heap settings
• Request Queue Timeout: Queue management settings

Security Settings

Security-critical configurations to audit:

• Sandbox Security: Enabled status and restrictions
• Administrator IP Restrictions: Allowed IP addresses
• Debugging IP Restrictions: Limited to development IPs
• CSRF Protection: Enabled for administrator
• Secure Profile: Lockdown settings active
• RDS Enabled: Should be DISABLED in production

Best Practices

Regular Review Schedule

• Review settings summary monthly for production servers
• Document any configuration changes made
• Compare settings across environments regularly
• Archive summaries after major changes for rollback reference
• Include in change control processes

Documentation

• Maintain baseline settings documentation for each environment
• Document reasons for non-standard settings
• Keep configuration history for audit trails
• Include settings summary in disaster recovery documentation
• Share with team members for knowledge transfer

Change Management

• Export summary before making configuration changes
• Export summary after changes for comparison
• Document what changed and why in change tickets
• Test changes in development using same settings
• Maintain version control of configuration documentation

Security Auditing

• Review security settings quarterly
• Compare against security best practices
• Verify no unauthorized changes have occurred
• Include in compliance reporting processes
• Document exceptions to security policies

Troubleshooting

Related Resources