Hi Jim,
It is best to achieve this using JBoss config.
For Admin UI version : 12.52SP1.XX and earlier (JBOSS 5)
1. Modify the server.xml located at :
<adminui_install_directory>\server\default\deploy\jbossweb.sar
add the following under host element:
<Valve className="org.apache.catalina.valves.RemoteAddrValve" allow="192.168.0.1" />
followed by Admin UI server restart.
TESTING:
(Access from disallowed IP )
For Admin UI version : 12.52SP2 and later (JBOSS Wildfly 8.2)
- Create a file undertow-handlers.conf file under :
<adminui_install_directory>\standalone\deployments\iam_siteminder.ear\user_console.war\WEB-INF
- Specify the list of all IP address from which you want to allow the access to Administrative UI
You can also specify the IP range and deny list explicitly as below:
ip-access-control[default-allow=false, acl={'10.0.0.1 deny', '10.0.0.0/24 allow'}]
- Restart Administrative UI
TESTING:
(Access from disallowed IP )
References :
Regards,
Ujwol Shrestha
Ujwol's Single Sign-On Blog