Using the security command

You can use the security command to clear all of the banned user/IP addresses on a Developer Portal site.

  1. Log in as Provider org:
    apic login --server management_server --realm provider/identity_provider --username provider_username --password provider_password
    You can determine which identity provider to use in the --realm parameter by entering the following command to see a list of all available identity providers (you do not need to be logged in to use this command):
    apic identity-providers:list --scope provider --server mgmt_endpoint_url --fields title,realm
    For example,
    apic identity-providers:list --scope provider --server --fields title,realm 
    total_results: 2
      - title: Cloud Manager User Registry
        realm: provider/default-idp-2
      - title: Corporate LDAP user registry
        realm: provider/corporate-ldap
    The title value should enable you to determine which identity provider to use; you can then copy the corresponding --realm parameter directly from the displayed realm value. For any identity providers that were created by your administrator after API Connect was installed, the names will have been determined at creation time. The default API Manager Local User Registry for login as a member of a provider organization is default-idp-2.

    For full details of the apic login command, see Logging in to a management server.

  2. Clear all of the user and IP addresses that are currently banned on a particular portal site:
    apic --mode portaladmin security:clear-bans --server management_server --catalog catalogid/name --org orgid/name
    • management_server is the endpoint URL of the management server.
    • catalogid/name is the ID or name of the catalog that the site belongs to.
    • orgid/name is the ID or name of the provider organization that the catalog belongs to.
    For example:
    apic --mode portaladmin security:clear-bans --server --catalog portal-test --org ibm
    [notice] All bans cleared.
Note: You can also manage banned IP addresses by using the Developer Portal UI. For more information, see Managing banned IP addresses.