Securing APIs

Securing Service Provider APIs from the external network.

This is applicable only if Service Provider is looking to block external/ public access of SP APIs.

To block Service Provider APIs from External/Public access

Procedure to block Service Provide APIs from external/public access:

  1. After installation of MiCloud Management Portal (ISO/OVA), log in as the root user (use password provided by Mitel).

  2. cd /opt/dist_oria-ear-setup/scripts/maint

  3. Execute block_sp_api.sh file.

    1. The script prompts Enter the total numbers of the subnet(s) [ ex: 2 ] followed by another prompt Enter subnet { sequence } to give access to service provider API's [ ex: 10.0.0.0/24 ].

    2. The above step is repeated based on the total number of subnet(s) given in the prompt Enter the total numbers of the subnet(s) [ ex: 2 ].

Nginx restarts automatically and allows access only for the specified subnets.

To revert to factory default

To get APIs access from the public network, perform the following revert to factory default procedure.

Note that by default, any subsequent upgrade of MiCloud Management Portal will revert to factory default.

  1. After installation of MiCloud Management Portal (ISO/OVA), log in as the root user (use password provided by Mitel).

  2. cd /opt/dist_oria-ear-setup/scripts/maint

  3. Execute block_sp_api.sh file.

  4. In the script prompt, Enter the total numbers of the subnet(s) [ ex: 2 ], enter 1.

    Do not specify any subnet number and proceed further.

Nginx restarts automatically and APIs are available on the public network