Integration Server 10.5 | Integration Server Administrator's Guide | Controlling Access to Resources | Controlling Access to Resources by Port | Restricting the Services or Web Service Descriptors Available from a Port | Deny Access to Specified Services (Allow All Others)
 
Deny Access to Specified Services (Allow All Others)
 
Resetting a Port to the Default Access
When a port is configured to allow by default, Integration Server allows access to most services and provider web service descriptors. Integration Server denies access to specific services and provider web service descriptors.
You can enter services, folders, or provider web service descriptors in the deny list one at a time. Additionally, you can specify service URIs that are not part of the Integration Server namespace. As an alternative to specifying individual services or folders, you can add multiple services and provider web service descriptors to the deny list at one time by adding all of the items associated with a specific Execute ACL.
*To deny access to specified services, folders, and provider web service descriptors
1. Open the Integration Server Administrator if it is not already open.
2. In the Security menu in the Navigation panel, click Ports.
3. Locate the port in the Port List and click the Allow or Deny link in the Access Mode column.
4. Click Set Access Mode to Allow by Default. Integration Server changes the access mode for the port.
5. Click Add Folders and Services to Deny List.
6. To enter the names of services, folders, or provider web service descriptors, on the left side of the screen, under Enter one service or folder per line, type the fully qualified name of the service, folder or provider web service descriptor for which you want to deny access. Press ENTER after each entry.
Note:
If you specify a folder, Integration Server denies access to all of the services and provider web service descriptors in the folder.
7. To specify services or provider web service descriptors by selecting from a list of elements associated with an ACL, under Select a set of folders and services on the right side, do the following:
a. In the Select an ACL list, select the ACL used as the execute ACL for the elements for which you want to deny access.
Integration Server Administrator displays and selects all of the elements that use the selected ACL as the execute ACL.
b. To add all of the selected items to the deny list on the left side of the screen, click Append Selected.
Integration Server appends the selected entries to the existing list.
c. If you do not want to add all of the items to the deny list, deselect the ones you do not want. To deselect multiple items, press the CTRL key while deselecting. To add the remaining items to the list of denied services for the port, click Append Selected.
f appends the selected entries to the existing list.
8. Repeat the above steps until you have built the list of services, folders, and provider web service descriptors for which you want to deny access on this port.
9. Click Save Additions.
10. Click Return to Ports to return to the Security > Ports > Edit Access Mode screen.