2 Replies Latest reply on Aug 11, 2010 7:46 AM by Zemian Deng

    password protect JMX, status and web console [Securing Jboss]

    Fyodor Vassiley Newbie

      Hi

       

      I found in Jboss wiki the article Securing the JMX Console and Web Console (HTTP): http://community.jboss.org/wiki/SecureTheJmxConsole

       

      The wiki page is fragmentary:

       

      To secure the JMX Console using a username/password file -
          * Locate the  directory.  This will normally be in  directory.
          * Edit  and uncomment the security-constraint block.
          * Edit  or  (version >=4.0.2) and  or  (version >=4.0.2) and change the users and passwords to what you desire.  They will need the JBossAdmin role specified in the web.xml file to run the JMX Console.
          * Edit  and uncomment the security-domain block. The security-domain value of jmx-console maps is declared in the login-config.xml JAAS configuration file which defines how authentication and authorization is done.

       

      Where are those files to add password protection?

       

      Additionlay how to disable or add a password the JBoss status page?

       

      We installed Jboss with a BMC product (it was automatically included)

       

      $ pwd
      /opt/idmsuiteuser/bmc/idm/idm-suite7.5/jboss-4.2.0.GA
      $ ls -lrt
      total 340
      -rwxrwxr-x   1 idmsuiteuser   other      57627 Feb  4  2009 jar-versions.xml
      -rwxrwxr-x   1 idmsuiteuser   other       3869 Feb  4  2009 readme_j2ee.html
      -rwxrwxr-x   1 idmsuiteuser   other       8102 Feb  4  2009 JBossORG-EULA.txt
      -rwxrwxr-x   1 idmsuiteuser   other      57055 Feb  4  2009 readme.html
      -rwxrwxr-x   1 idmsuiteuser   other       6095 Feb  4  2009 copyright.txt
      -rwxrwxr-x   1 idmsuiteuser   other      33732 Feb  4  2009 lgpl.html
      drwxrwxr-x   7 idmsuiteuser   other        512 Jul  9  2009 docs
      drwxrwxr-x   2 idmsuiteuser   other       2048 Jul  9  2009 client
      drwxrwxr-x   3 idmsuiteuser   other        512 Jul  9  2009 lib
      drwxrwxr-x   6 idmsuiteuser   other        512 Jul  9  2009 server
      drwxrwxr-x   2 idmsuiteuser   other       1024 Aug 28  2009 bin

       

      cheers nonboss