Restricting server access using the connection handlers
Use dsconfig
to set the allowed-client
property for the LDAP connection handler.
Steps
-
Set the
allowed-client
property for the LDAP connection handler usingdsconfig
. -
Specify the address mask for the range of allowable IP addresses that can establish connections to the PingDirectory server.
-
To configure the server using the
dsconfig
tool on the local host, specify the loopback address to 127.0.0.1.Example:
$ bin/dsconfig set-connection-handler-prop \ --handler-name "LDAP Connection Handler" \ --set "allowed-client:10.6.1.*" \ --set allowed-client:127.0.0.1