Can not get SPNEGO kerberos ldap to work in AS 7.1.0.Final Hi, we use kerberos to authenticate and ldap to lookup roles. Here is my configuration from login-config.xml from AS 5.1. <application-policy name="host"> <authentication> ... 
Vault encrypted system-properties from webapp Hi, do you know (if possible) how to read vault encrypted system-property values (in standalone.xml) from a webapplication deployed in JBoss AS 7? Thank you 
LDAP - UsernamePasswordLoginModule shows the same exeption in case of login failed due to wrong password and Login failed due to wrong LDAP password configured Hi all, I want to discriminate two cases based on the exception responded from LDAP server Login failed due to wrong password Login failed due to wrong LDAP password configured Unfortunately, the exception ... 
SecureIdentityLoginModule - 'jaas is the way' Hi, Has anybody modified the SecureIdentityLoginModule class to replace the phrase 'jaas is the way', in order to improve datasource security? If so, how to? Thanks, Andre 
How to configure groups in Jboss EAP for Kerberos implementation? I have configured my application with Kerberos authentication for a specific user in jboss-eap and it's working fine. But wants to configure the same on the basis of the group i.e users in a specific group will able t... 
Kerberos configuration on jboss-eap 6.2 Kerberos configuration done in jboss-eap 6.2 but facing an issue while using the same. Error in server logs: [org.jboss.security.auth.spi.AbstractServerLoginModule] (http-/0.0.0.0:8080-2) Unsupported negotiation mecha... JMS destination remote lookup failure on WFLY8 when using <jaas/> instead of <properties/> authentification within applicationRealm and client and server running on different computers The Remote JMS (destination, connection factory) lookup against Wildfly concerning security does only work with SecurityRealm using properties mechanism. The Remote EJB Client Lookup also works with SecurityRealm us... 
Problems with SPNEGO I have carefully read the manual (User Guide for JBoss Negotiation) and set up the test network for using SPNEGO: - 1st host - Windows 2003 Adv Server (Active Directory and DNS) - 2nd host - Windows 2003 Adv Server (... 
RMI over Http and jaas authentication Hello, I developped a web application and configured it to connect to an ejb application using JAAS. I want to do the same with a java client. The java client invokes an EJB threw JNDI (RMI over Http). I want to make ... 
Authentication succeeded, getCallerPrincipal()=anonymous I'm using JBoss 5.1.0, a J2EE application, the frontend is a RAP application deployed in an OSGi container (Equinox). All runs fine beside the login. Though authentication is successfull, I always get the default ide... 
jboss 7 requires password in an encrypted form My problem is: I keep passwords encrypted in sql database, and JBoss rejects me when I enter them in normal (not hashed) form. What is more, when I try with their hashed forms i.e. "X8oyfUbUbfqE9IWvAW1/3" ... 
LDAP-Authentication failed - User does not have role 'Authenticated' Hi, I'm using Jboss-Portal 2.7.2, with Jboss 4.2.3. I want to use LDAP authentication and configured my login-module the following way: <login-module... 
j_security_check & Struts I am trying to use a form based login and I am rather confused. I have been trolling through the forums here and elsewhere, read the jaas howto at least twice, read the security parts of the Servlet 2.3 and J2EE spec... 
Picketbox 4.0.21 Final caching ? Using picketbox-4.0.21.Final that comes bundled with WildFly 8.2.0 Final. There is a security domain named ApplicationRealm, doing a DB based auth, as such: <security-domain name="ApplicationRealm" cache-ty... 
Cache on a Datasource security-domain Hi, I have a standalone.xml of a JBoss AS 7.1.0 configured with a datasource and two security domain, one for the datasource (login-module=SecureIdentity) and another for our EJB/Webservices (login-module=Data... 
How to authenticate programmatically in Wildfly 8.2.0? Hi everyone! I have custom two custom login modules, actually one is a login module and the other a mapping module, both developed on top of PicketBox (the version shipped with Wildfly 8.2.0). I extended some ... 
In 5.2.0, JBossSX bypassed for subsequent logins I recently upgraded from JBoss 5.1.0 to 5.2.0. I noticed that JBossSX is utilized for the initial login for a given user/password. If the same user logs in again (with the same password), JBossSX is bypass... 
What is the eccn of PicketBOX? What is the eccn of PicketBox? is there any restriction for exportation? 
LdapExtLoginModule LdapExtLoginModule The org.jboss.security.auth.spi.LdapExtLoginModule, added in jboss-4.0.3, is an alternate ldap login module implementation that uses searches for locating both the user to bind as for authentication... Extending AbstractPasswordCredentialLoginModule Hi, I want to create my own copy of SecureIdentityLoginModule where I only change the secrete key. I originally tried to create an exact copy of SecureIdentityLoginModule, built a jar with it and put it in server/lib... 
Log in to follow, share, and participate in this community.