Blocking public access to the publisher’s default URL



Adobe Experience Manager


One customer wants to block public access to their production publish URL -, to ensure that it is accessible only via their custom domain name (

As per the custom domain name setup, the DNS record for ‘’ contains a CNAME entry of They do not have a separate CDN and are using AEM’s Fastly CDN.


In this scenario, you cannot block by a certain domain at the edge. The workaround is to create a vhost in the dispatcher to match your default domain and deny access for all requests in the vhost.

However, the /systemready path should be allowed because that is Adobe’s healthcheck.

Documentation link

For more help, visit the following link:

On this page