Limitations & Restrictions to Role-based Access

You can still access network endpoints directly, such as MFDS and ESMAC directly and this feature does not add security directly to those endpoints if they are exposed.

Micro Focus recommends that you:

• Use this feature in conjunction with the resource classes for those processes. See Resource Classes used by Enterprise Server for more information.
• Restrict network access to the MFDS and ESMAC endpoints. This could be by making them loopback only or through firewall configuration. This will mean you can limit how many of the above Resource Classes you must change.
• Use the same ESF configuration for ESCWA, MFDS and enterprise server region.

A role-based approach can be used with a multiple stacked ESM configuration, however, you will not be able to use the roles user interface features in ESCWA. The resource entities’ ACL strings will have to be set through other tooling. See Manually Modifying a Role Task ACL String for more information.