Copy to /usr/dt/config/Xaccess file to /etc/dt/config.
Comment out the following lines if you want to fully restrict access:
* # grant service to all remote displays * CHOOSER BROADCAST #any indirect host can get a chooser
The dtlogin(1x) manual page explains how to have more fine grained control.