2.10.7 Blocking Access to the WSDL Services Page

Users can access the WSDL services page when by entering the base URL of Identity Server in browsers with the path to the Services page.

For example, if the base URL is http://bfrei.nam.example.com:8080/nidp, users can access the services page by using http://bfrei.nam.example.com:8080/nidp/services.

The Services page contains the following information and links:

Figure 2-24 WSDL Services Page

The information displayed on this page depends upon the profiles you enabled. To enable profiles, click Devices > Identity Servers > Edit > Liberty > Web Service Provider.

If you do not want users to access this page, perform the following steps:

  1. Click Devices > Identity Servers > Edit > Options.

  2. Click New. Specify the following details:

    Property Type: WSF SERVICES LIST

    Property Value: Select any one of the following options:

    • full: To enable users to access the Services page

    • 404: To return an HTTP 404 status code: Not Found

    • 403: To return an HTTP 403 status code: Forbidden

    • empty: To return an empty services list

  3. Restart Tomcat by running the following commands:

    Linux: Enter one of the following commands:

    /etc/init.d/novell-idp restart

    rcnovell-idp restart

    Windows: Enter the following commands:

    net stop Tomcat8

    net start Tomcat8