3.12.7 Blocking Access to the WSDL Services Page

Users can access the WSDL services page by entering the base URL of Identity Server in browsers with the path to the Services page.

For example, if the base URL is http://bfrei.nam.example.com:8080/nidp, users can access the services page by using http://bfrei.nam.example.com:8080/nidp/services.

Figure 3-2 WSDL Services Page

The information displayed on this page depends on the profiles you enabled. To enable profiles, click Devices > Identity Servers > Edit > Liberty > Web Service Provider.

If you do not want users to access this page, perform the following steps:

  1. Click Devices > Identity Servers > Edit > Options.

  2. Click New and specify the following details:

    Property Type: WSF SERVICES LIST

    Property Value: Select any one of the following options:

    • full: To enable users to access the Services page

    • 404: To return an HTTP 404 status code: Not Found

    • 403: To return an HTTP 403 status code: Forbidden

    • empty: To return an empty services list

  3. Restart Tomcat by running the following commands:

    /etc/init.d/novell-idp restart

    or

    systemctl restart novell-idp.service

    For the Docker deployment, perform the following steps:

    1. Run the kubectl get pods command to view the Access Manager pods.

    2. Go to the Identity Server pod by running the kubectl exec --namespace <name-of-the-namespace> -it pod/<name-of-the-identity-server-pod> -- sh command.

    3. Run the /etc/init.d/novell-idp restart orsystemctl restart novell-idp.service command.