Loopback

Process network endpoints enable communicate between and into the elements of Enterprise Server. If these network endpoints do not run in a loopback mode, then this leaves external communications to them exposed if TLS encryption is not enabled.

Micro Focus strongly recommends that any network endpoint, which does not require external communication for administrators or clients, should run in a loopback only mode.

Those endpoints that must require external communication must use TLS encryption.

Configuration options

ESCWA
If the ESCWA process network endpoint must be external and not on loopback, see TLS Encryption for more information.

If the ESCWA endpoint can run on loopback, use ESCWA to perform the following steps:

  1. Click

    This opens the Enterprise Server Administration Configuration dialog box.

  2. Expand Server Settings
  3. In the Hostname or IP Address field, type localhost.
  4. Click Apply.
  5. Restart the ESCWA process. ESCWA can now only be accessed from localhost or an equivalent IP address in the browser.
Directory Server

If the Directory Server process network endpoint must be external and not on loopback, see TLS Encryption for more information.

If the Directory Server endpoint can run on loopback, use ESCWA to perform the following steps:

  1. In the top menu bar, click Native.
  2. In the Native Navigation pane, expand Directory Server.
  3. Click the directory server you require, then click Properties > Configuration.

    This takes you to the Directory Server Configuration page.

  4. Check Listen on Loopback Only.
  5. Click Apply.
  6. Restart the Directory Server process.
Communications Process
Typically, a Communications Process can be made to listen on loopback only if the ESCWA instance viewing the region is on the same machine.

If the Communications Process network endpoint must be external and not on loopback, see TLS Encryption for more information.

If the Communications Process endpoint can run on loopback, use ESCWA to perform the following steps:

  1. In the top menu bar, click Native.
  2. In the Native Navigation pane, expand Directory Servers.
  3. Click the region you require.
  4. Click General > Listeners.

    This opens the Communications Server Properties page.

  5. In the Native Listener Navigation pane, click the communications process you require.
  6. Expand Configure.
  7. In the Hostname or IP Address field, type localhost.
  8. Click Apply.
  9. Restart the region so the changes are applied.

Next time the region is started, the network endpoint will be on loopback only.

Listener

If the Listener process network endpoint must be external and not on loopback, see TLS Encryption for more information.

If the Listener process endpoint runs on loopback, use ESCWA to perform the following steps:

  1. In the top menu bar, click Native.
  2. In the Native Navigation pane, expand Directory Server.
  3. Click the region you require.
  4. Click General > Listeners.

    This opens the Communications Server Properties page.

  5. In the Native Listener Navigation pane, click the listener you require.
  6. In the Hostname or IP Address field, type localhost.
  7. Click Apply.
  8. Restart the region so the changes are applied.

Next time the region is started, the network endpoint will be on loopback only.

Parent topic: Configuration Report