Problem:
There is a request from our InfoSec team to disable web admin interface (https://URL/users/login) from all subnet except one…
We cannot do that throw local firewall because 443 port should be opened for update functionality.
Only the web admin interface should be disabled…
So, I made changes in httpd configuration and added new file conf (/etc/httpd/conf.d/05-foreman-ssl.d/custom.conf)
#cat /etc/httpd/conf.d/05-foreman-ssl.d/custom.conf
<Location /users/login>
Require ip 192.16.X.X/24
restart httpd service
#systemctl restart httpd
…and everything is OK till next foreman-installer execution.
Is there any chance to implement “Location” configuration in custom-hiera.yaml?
I try it, but could not find proper conf.
Please, any help will be greatly appreciated.
Foreman and Proxy versions:
foreman-2.3.5-1.el7.noarch
katello-3.18.5-1.el7.noarch
Distribution and version:
CentOS7