Administrators can connect securely with Couchbase Web Console.
Obtaining Secure Console Access
Note that Encrypted network access is only available in Couchbase Server Enterprise Edition.
The Couchbase Web Console can be accessed over HTTPS, on port 18091
.
Since it is protected by SSL/TLS, this connection is secure.
Disabling Non-Secure Console Access
If you wish to force Administrators to log into the UI over an encrypted channel, and so use port 18091 only, you can disable console access on port 8091. Note that this only affects console access, and does not prevent REST requests from continuing to use 8091, non-securely.
The following REST API method disables Couchbase Web Console on port 8091, so that the secure port 18091 must be used instead:
curl -u Administrator:password \ http://localhost:8091/settings/security \ -d disableUIOverHttp=true
To re-enable Couchbase Web Console access on port 8091, enter the following:
curl -u Administrator:password \ http://localhost:8091/settings/security \ -d disableUIOverHttp=false
Note that the following CLI command can also be used for disabling and enabling unsecured http access. The following expression disables http-based console access, such that https on port 18091 must be used instead:
couchbase-cli setting-security -c <servername> \ -u Administrator -p password \ --set \ --disable-http-ui 1
To re-enable, use the same command with 0
specified for the --disable-http-ui
flag.
Disabling Secure Console Access
Access to Couchbase Web Console can also be disabled for https access. For details, see Manage Encryption Settings.