Securing the Solr Administrative console

Configure secure access to the Solr Administrative console.
The following variable is used in path names in this topic:
RATIONAL_COMMON
Directory where Rational common files are installed
By default, the Solr Administrative console is not protected. If you have not configured secure access to the Solr Administrative console just before you begin indexing the ClearQuest database, anyone who knows the console URL can search the database without authenticating.

To configure secure access to the Solr Administrative console, perform the following steps:

  1. Use a text editor to edit the file httpd.conf, which is located in the following IBM HTTP Server directory:
    On Windows:
    drive:\%RATIONAL_COMMON%\IHS\config
    On the UNIX system and Linux:
    $RATIONAL_COMMON/IHS/config
  2. Locate the <Location> section. Following is an example of this section:
    <Location />
    Order allow,deny
    Allow from all
    Options-Indexes
    </Location>
  3. Modify the <Location> section by incorporating the following changes:
    <Location /solr>
    Order allow,deny
    Allow from localhost
    Options-Indexes
    </Location>
  4. Restart the IBM HTTP Server.

    For more information about the configuration file httpd.conf, see the Apache HTTP Server documentation at http://httpd.apache.org/docs/.

If your security requirement is not met after performing the steps just described, you can disable the Solr Administrative console by renaming the following folder:
On Windows:
drive:\%RATIONAL_COMMON%\CM\profiles\cqsearchprofile\InstalledApps\WebSphereAppServer-cell\apache-solr-1.2.0.ear\apache-solr-1.2.0.war\admin
On the UNIX system and Linux:
$RATIONAL_COMMON/CM/profiles/cqsearchprofile/InstalledApps/WebSphereAppServer-cell/apache-solr-1.2.0.ear/apache-solr-1.2.0.war/admin


Feedback