4.8.7 Blocking Access to the WSDL Services Page

Users can access the WSDL services page when they enter the base URL of Identity Server in their browsers with the path to the Services page. For example, if your base URL is http://bfrei.nam.example.com:8080/nidp, the users can access the services page by using http://bfrei.nam.example.com:8080/nidp/services.

The Services page contains the following information and links:

Figure 4-2 WSDL Services Page

The amount of information displayed on this page depends upon the profiles you have enabled. To enable profiles, click Devices > Identity Servers > Edit > Liberty > Web Service Provider.

If you do not want your users to have access to this page, you can block access.

Click Devices > Identity Servers > Edit > Options.

Click New. Specify the following details:

Property Type	Property value
Select WSF SERVICES LIST.	Select full to enable users to access the Services page. Select 404 to return an HTTP 404 status code: Not Found Select 403 to return an HTTP 403 status code: Forbidden Select empty to return an empty services list

Property Type

Property value

Select WSF SERVICES LIST.

Select full to enable users to access the Services page.

Select 404 to return an HTTP 404 status code: Not Found

Select 403 to return an HTTP 403 status code: Forbidden

Select empty to return an empty services list

Restart Tomcat for your modifications to take effect:

Linux: Enter one of the following commands:

/etc/init.d/novell-idp restart

rcnovell-idp restart

Windows: Enter the following commands:

net stop Tomcat8

net start Tomcat8