SECURE HTTPS CONNECTION ALLOWS DIRECT ACCESS TO FOLDERS IN SCC

Technote (troubleshooting)


Problem(Abstract)

If the secure HTTPS connection is used to attach to the Sterling Control Center Engine the following folders are visible from the browser.



<SCC_Server>:58083/lib/sterling

<SCC_Server>:58083/logs

<SCC_Server>:58083/bin



Access is not allowed on a non-secure connection.

Cause

This has been identified as a product defect under APAR IC90330

Diagnosing the problem

From the browser directories on the Sterling Control Center server install are accessible.

Resolving the problem

Apply the latest maintenance containing the fix from APAR IC90330 and follow the instructions on changing the \conf\services\jmx\JettyService.xml file with <dirAllowed>false</dirAllowed>

Rate this page:

(0 users)Average rating

Document information


More support for:

Control Center

Software version:

5.3, 5.4

Operating system(s):

AIX, HP-UX, Linux, Solaris, Windows

Reference #:

1632188

Modified date:

2013-04-08

Translate my page

Machine Translation

Content navigation