Securing the Solr Administrative console

Secure access to the Solr Administrative console.
The following variable is used in path names in this topic:
RATIONAL_COMMON
Directory where Rational common files are installed
By default, the Solr Administrative console is not protected. If you have not secured access to the Solr Administrative console just before you begin indexing the ClearQuest database, anyone who knows the console URL can search the database without authenticating.

To secure access to the Solr Administrative console, perform the following steps:

  1. Use a text editor to edit the file httpd.conf, which is located in the following IBM HTTP Server directory:
    On Windows:
    drive:\%RATIONAL_COMMON%\IHS\config
    On the UNIX system and Linux:
    $RATIONAL_COMMON/IHS/config
  2. Locate and modify the <Location> section. Following is an example of this section:
    <Location /solr>
    Order allow,deny
    Allow from all
    Options-Indexes
    </Location>
    1. Modify the line that starts with the word Order by interchanging the words allow and deny as shown next:
      Order deny,allow
    2. Insert the following line:
      Deny from all
    3. Replace the line Allow from all with a line that specifies the local host or one or more computer names, each delimited by a space. Following are examples of a revised Allow from line:
      • Allow from localhost
      • Allow from my-server-1
      • Allow from localhost my-server-1
      • Allow from my-server-1 my-server-2
    Following is an example of an updated <Location> section in the file httpd.conf:
    <Location /solr>
    Order deny,allow
    Deny from all
    Allow from localhost my-server-1 my-server-2
    Options-Indexes
    </Location>
  3. Restart the IBM HTTP Server.

    For more information about the configuration file httpd.conf, see the Apache HTTP Server documentation.

If your security requirement is not met after performing the steps just described, you can disable the Solr Administrative console by renaming the following folder:
On Windows:
drive:\%RATIONAL_COMMON%\CM\profiles\cqsearchprofile\InstalledApps\WebSphereAppServer-cell\apache-solr-1.2.0.ear\apache-solr-1.2.0.war\admin
On the UNIX system and Linux:
$RATIONAL_COMMON/CM/profiles/cqsearchprofile/InstalledApps/WebSphereAppServer-cell/apache-solr-1.2.0.ear/apache-solr-1.2.0.war/admin

Feedback