Restricting remote access using scripting

You can use the wsadmin tool to restrict remote administration so that administrators only manage nodes locally. This prevents the base node from opening remote ports for the administrator. Each administrative connection must occur from the local workstation.

Procedure

  1. Start the wsadmin scripting tool.
  2. Restrict remote access.
    Run the following set of commands for each server of interest to restrict remote access:
    server=AdminConfig.getId('/Server:server1/')
    AdminTask.setAdminProtocolEnabled(server, '[-conntype SOAP –enable false]')
    AdminTask.setAdminProtocolEnabled(server, '[-conntype RMI –enable false]')
    AdminTask.setAdminProtocolEnabled(server, '[-conntype JSR160RMI –enabled false]')
    AdminTask.setAdminProtocol(server,'[-conntype IPC -mode local]')
  3. Restart each server.
    Use the stopAllServers and startAllServers commands in the AdminServerManagement script library to restart each server configured with local access only, as the following example demonstrates:
    AdminServerManagement.stopAllServers("myNode")
    AdminServerManagement.startAllServers("myNode")



In this information ...


Related information

IBM Redbooks, demos, education, and more

(Index)

Use IBM Suggests to retrieve related content from ibm.com and beyond, identified for your convenience.

This feature requires Internet access.

Task topic Task topic    

Terms and conditions for information centers | Feedback

Last updatedLast updated: Jan 30, 2014 9:17:32 AM CST
http://www14.software.ibm.com/webapp/wsbroker/redirect?version=matt&product=was-nd-iseries&topic=txml_7restrictremote
File name: txml_7restrictremote.html