Configuring Security Settings |
 Previous |
 Next |
Use the Security section of the Manage Environment Settings page to disable administrator and workspace login as well as restrict user access by IP address.
Topics:
-
Disabling Access to Oracle Application Express Administration Services
-
Disabling Access to Oracle Application Express Internal Applications
Disabling Access to Oracle Application Express Administration Services
Oracle Application Express administrators can restrict user access to Oracle Application Express Administration Services by selecting Yes from Disable Administrator Login. Selecting Yes prevents unauthorized users from logging in to Oracle Application Express Administration Services and possibly compromising user login credentials.
To disable user access to Oracle Application ExpressAdministration Services:
-
Log in to Oracle Application Express Administration Services. See "Logging in to Oracle Application Express Administration Services".
-
Click Manage Service.
-
Click Manage Environment Settings.
-
Scroll down to Security.
-
For Disable Administrator Login, select Yes.
Setting this value and logging out prevents anyone from logging in to Oracle Application Express Administration Services.
To reverse this setting, connect in SQL*Plus as the Application Express engine schema and execute the following:
BEGIN
WWV_FLOW_API.SET_SECURITY_GROUP_ID(p_security_group_id=>10);
WWV_FLOW_PLATFORM.SET_PREFERENCE(
p_preference_name => 'DISABLE_ADMIN_LOGIN',
p_preference_value => 'N' );
end;
/
commit
/
Disabling Access to Oracle Application Express Internal Applications
The applications that comprise Oracle Application Express (such as Application Builder and SQL Workshop) exist within a workspace named Internal. To restrict user access to Internal applications, select Yes from Disable Workspace Login. Selecting Yes in production environments prevents unauthorized users from running applications (such as Application Builder and SQL Workshop) in the Internal workspace and possibly compromising login credentials. Administrators who use this feature should also consider disabling user access to Oracle Application Express Administration Services.
To disable user access to the Internal workspace:
-
Log in to Oracle Application Express Administration Services. See "Logging in to Oracle Application Express Administration Services".
-
Click Manage Service.
-
Click Manage Environment Settings.
-
Scroll down to Security.
-
From Disable Workspace Login, select Yes.
Selecting Yes prevents users from logging in to the Internal workspace.
-
Click Apply Changes.
Restricting User Access by IP Address
Oracle Application Express administrators can restrict user access to an Oracle Application Express instance by creating a Runtime setting named RESTRICT_IP_RANGE.
To restrict user access by IP address:
-
Log in to Oracle Application Express Administration Services. See "Logging in to Oracle Application Express Administration Services".
-
Click Manage Service.
-
Click Manage Environment Settings.
-
Scroll down to Security.
-
For Disable Administrator Login, select No.
-
In Restrict Access by IP Address, enter a comma-delimited list of IP addresses. Use an asterisk (*) to specify a wildcard.
You can enter IP addresses from one to four levels. For example:
141, 141.* ... 192.128.23.1 ...
Note:
When using wildcards, do not include additional numeric values after wildcard characters. For example,138.*.41.2. -
Click Apply Changes.