Disable the CA Identity Manager Management Console

The Management Console does not authenticate users by default. Anyone can access it, and change your configuration settings. To prevent the security vulnerability of your system, disable the Management Console after you configure your settings.
cminder12902
The Management Console does not authenticate users by default. Anyone can access it, and change your configuration settings. To prevent the security vulnerability of your system, disable the Management Console after you configure your settings.
Follow these steps:
  1. Stop JBoss if it is running. Do 
    one 
    of the following:
    • From the JBoss job windows, interrupt (Ctrl+C) the process.
    • Stop the JBoss Application Server service from the Services Panel.
  2. Navigate to the following directory, where 
    JBoss_HOME
     is the directory where you installed JBoss:
    JBoss_HOME/server/default/deploy/
    IdentityMinder.ear/management_console.war/WEB-INF
  3. Open the 
    web.xml 
    file in an editable form.
  4. Search for the following section:
    AccessFilter
  5. In the <param-value> field, change the value from True to False.
  6. Save and close the file.
  7. Start JBoss.
    The CA Identity Manager Management Console is disabled.