PingDirectory

Restricting server access using the connection handlers

Use dsconfig to set the allowed-client property for the LDAP connection handler.

Steps

  • Set the allowed-client property for the LDAP connection handler using dsconfig.

  • Specify the address mask for the range of allowable IP addresses that can establish connections to the PingDirectory server.

  • To configure the server using the dsconfig tool on the local host, specify the loopback address to 127.0.0.1.

    Example:

    $ bin/dsconfig set-connection-handler-prop \
      --handler-name "LDAP Connection Handler" \
      --set "allowed-client:10.6.1.*" \
      --set allowed-client:127.0.0.1