I'm a using Websphere 5.0 and I'm new to it. Currently it is possible for any machine to access my administrative console by typing, http://myMachineName:9090/admin This makes it possible for anyone in the LAN to install or uninstall the applications. How can I prevent this from happening? Is there a password authentication scheme for this or any other methods???
When logging in to the admin console it shows a single textbox for entering the "User Id:" and below that the following message is displayed, "The User ID does not require a password, and does not need to be a User ID of a user in the local user registry. It is only used to track user-specific changes to configuration data. Security is NOT enabled".
And so it gets any entry for UserID and gets into the console page allowing anyone to access the installed applications,
Now can u help me how I could prevent this.
Hope there should be someway to enable the Security!