Solved: Block access to CRX/CRXDE Lite - Adobe Experience League Community

View profile · 17-08-2020

i need to block user access to CRX or CRXDE Lite. My group has inherited permission from OOTB Contributors and I have denied access to these paths as well:

/libs/crx

/libs/cq/core/content/nav/tools/general/crxdelite

/libs/granite/core/content/nav/operations/crxdelite

/libs/cq/core/content/welcome/features/crxdeThese helps to hide all the buttons from the instance, but, if I directly hit the CRX URL, i will be able to read the content in it, though i cant create/delete/modify. I am using AEM 6.5.5 without dispatcher.

View profile · 17-08-2020

Hi @Shaheena_Sk

Crx/de lite access can be disabled on AEM instances by disabling some of the AEM bundles.

Refer https://www.aemquickstart.in/2015/11/how-to-disable-crxde-and-crxde-lite.html.

There is a similar post which you can also refer https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/how-to-disable-crx-de-in-a....

Hope it helps!

Thanks!

Nupur

View profile · 17-08-2020

Hi @Shaheena_Sk ,

There is a very nice blog for this by @Arun_Patidar

https://experienceleaguecommunities.adobe.com/t5/adobe-experience-manager/aem-restricting-crxde-acce...

Shaheena_Sk · ‎23-09-2020

If you have a Dispatcher configured in front of your CQ instance, you can block access to CRX and CRXDE Light using the following filter rule in you dispatcher configuration (dispatcher.any)

/ruleLabel{/glob "* /crx*"/type "deny"}

To control what features/links are displayed to the users on the welcome screen in authoring mode modify permissions for nodes under /libs/cq/core/content/welcome/features.

Block access to CRX/CRXDE Lite

Accepted Solutions (1)

Accepted Solutions (1)

Answers (2)

Answers (2)