The ServiceControlClients action parameter is deprecated for Query Manipulation Server version 11.5.0 and later. HPE recommends that you use authorization roles instead. See Authorization Roles Configuration Parameters.

The ServiceControlClients configuration parameter is still available for existing implementations, but it might be incompatible with new functionality. The parameter might be deleted in future.

The IP addresses or names of clients that can send service control actions to the service. Separate multiple addresses with commas. There must be no space before or after the comma.

Adding a client to ServiceControlClients does not enable it to send service status actions. To enable a client to send status actions, you must add the IP address or host name to the ServiceStatusClients.

You can use wildcards in the IP addresses. For example, type 187.*.*.* to permit any machine whose IP address begins with 187 to control the service. You can also filter the ServiceControlClients parameter using CIDR notation.

You can also configure client permissions by using the [AuthorizationRoles] configuration section. This section provides a more flexible method for setting up user authorization, and also allows you to set up permissions by using SSL identities or GSS principals. See Authorization Roles Configuration Parameters.

To disable authorization by client IP address, set this parameter to "". In this case, Query Manipulation Server uses the options that you set in the [AuthorizationRoles] section only.

Type: String
Default: None
Required: Yes
Configuration Section: Service
Example: ServiceControlClients=localhost,
See Also: ServiceACIMode