3.13 Restricting the Direct Access to Files in the nidp Folder

(Access Manager 4.5 Service Pack 4 and later)

For security purposes, direct access to application.xml and extern/dist/lib/ files available in the nidp folder is restricted by default. You can remove the restriction by commenting the <security-constraint> tag in the web.xml file.

If you want to restrict access to any other file in the nidp folder, perform the following steps:

  1. Open the /opt/novell/nids/lib/webapp/WEB-INF/web.xml file.

  2. Under the <security-constraint> tag, add <url-pattern> or <path of the file> that you want to hide from the direct access.

    The following is an example snippet:

         <web-resource-name>Include files</web-resource-name>
         <description>No direct access to include files.</description>
      <auth-constraint />
  3. Save the file.

  4. Restart Identity Server by running the rcnovell-idp restart command.