How To
ForgeRock Identity Platform
Does not apply to Identity Cloud

How do I remove access to the browser-based UI in IDM (All versions)?

Last updated Apr 8, 2021

The purpose of this article is to provide information on removing access to the Admin and/or End User (previously Self-Service) UIs in IDM. You may want to do this for security reasons.


Removing access to the browser-based UI

You can remove access to the Admin and/or End User UIs using one of the following options:

  • Disable the UI
  • Remove the ui directory

Disable the UI

You can disable the UIs as follows:

  • Admin: edit the ui.context-admin.json file (located in the /path/to/idm/conf directory) and change enabled to false. For example: { "enabled" : false, "urlContextRoot" : "/admin",
  • End User
    • IDM 6.5 and later: edit the ui.context-enduser.json file (located in the /path/to/idm/conf directory) and change enabled to false. For example: { "enabled" : false, "urlContextRoot" : "/",
    • Pre-IDM 6.5: edit the ui.context-selfservice.json file (located in the /path/to/idm/conf directory) and change enabled to false. For example: { "enabled" : false, "urlContextRoot" : "/",

Remove the ui directory

The ui directory (located in the /path/to/idm directory) contains an admin directory and either an enduser (IDM 6.5 and later) or selfservice (pre-IDM 6.5) directory. You can simply remove one or both of these directories to remove access to the corresponding UI.

See Also

Customizing IDM

Setup Guide › Admin UI

Self-Service Reference › Self-Service End User UI

Security Guide

Related Training

N/A

Related Issue Tracker IDs

N/A


Copyright and Trademarks Copyright © 2021 ForgeRock, all rights reserved.