Restrict access to CA Identity Manager about.jsp
search cancel

Restrict access to CA Identity Manager about.jsp


Article ID: 144164


Updated On:


CA Identity Manager CA Identity Governance


The CA Identity Manager application discloses its version by accessing the about.jsp page from the "About" menu.

While access to the page is only for a logged in user, some sites may choose to restrict the access to the actual release / patch level.



Release : 14.x

Component : IdentityMinder(Identity Manager)


One option would be to utilize SSO (if used) and create a dedicated protected realm for /iam/im/<IME_ALIAS>/ca12/about.jsp
Another option would be to use the sample under Identity Manager admin tools (..\CA\Identity Manager\IAM Suite\Identity Manager\tools\samples\Admin) as described in the Readme.txt and utilize the application server itself for additional protection, much the way it is done with logging.jsp