How do I set AD Helper to only listen on localhost?

John_NortonJohn_Norton WatchGuard Representative
edited August 2018 in TDR - AD Helper

By default, AD Helper listens on all interfaces. I would like to limit access to the AD Helper web UI to only the local machine.

Best Answer

  • John_NortonJohn_Norton WatchGuard Representative
    Answer ✓

    1) Stop the helper service
    2) As an administrator, Open C:\Program Files (x86)\WatchGuard\Active Directory Helper\helper.xml
    3) Edit the element (around line 42) and add --httpListenAddress=127.0.0.1 before --httpPort=8080. It should look like this:

    <arguments>-Xrs -Xmx256m -jar "%BASE%\helper.war" --httpListenAddress=127.0.0.1 --httpPort=8080 --webroot="%BASE%\war"</arguments> 
    

    4) Save and close the file
    5) Start the helper service.
    This will limit connections to only the local machine running AD Helper and prevent access to the web interface from other hosts on the network.
    There are future improvements planned to allow selecting the interface IP dynamically via the web UI without needing to edit the helper.xml file directly.

Sign In to comment.