Securing admin console with https not working
wlam Sep 25, 2012 3:22 PMHi,
I'm running JBosss AS 7 in a domain mode. How can I setup https on the Console with port 9990. https://myhost:9990? Something are missing from either or both config files. Or how can "ManagementRealm" references "socket binding="management-https" in domain.xml
I followed this reference guide.
https://community.jboss.org/wiki/SecuringAdministrationConsoleWithHttps
host.xml
=======
<management>
<security-realms>
<security-realm name="ManagementRealm">
<authentication>
<properties path="mgmt-users.properties" relative-to="jboss.domain.config.dir"/>
</authentication>
<server-identities>
<ssl>
<keystore path=".keystore" relative-to="jboss.home.dir" password="changeit"/>
</ssl>
</server-identities>
</security-realm>
<security-realm name="ApplicationRealm">
<authentication>
<properties path="application-users.properties" relative-to="jboss.domain.config.dir" />
</authentication>
</security-realm>
</security-realms>
<management-interfaces>
<native-interface security-realm="ManagementRealm">
<socket interface="management" port="${jboss.management.native.port:9999}"/>
</native-interface>
<http-interface security-realm="ManagementRealm">
<socket interface="management" port="${jboss.management.http.port:9090}"/>
<socket interface="management" port="${jboss.management.https.port:9990}"/>
</http-interface>
</management-interfaces>
</management>
domain.xml
=========
<socket-binding-group name="full-sockets" default-interface="public">
<socket-binding name="ajp" port="8009"/>
<socket-binding name="http" port="9090"/>
<socket-binding name="https" port="9443"/>
<socket-binding name="management-https" interface="management" port="9990"/>
.....
</socket-binding-group>
<server-groups>
<server-group name="main-server-group" profile="full">
<jvm name="default">
<heap size="64m" max-size="512m"/>
</jvm>
<socket-binding-group ref="full-sockets"/>
<deployments>
<deployment name="webservice_ex7.war" runtime-name="webservice_ex7.war"/>
</deployments>
</server-group>
<server-group name="other-server-group" profile="full-ha">
<jvm name="default">
<heap size="64m" max-size="512m"/>
</jvm>
<socket-binding-group ref="ha-sockets"/>
</server-group>
</server-groups>
Any help or tips are appreciated.
Thanks a lot,
Will