3 Replies Latest reply on Feb 8, 2017 4:18 AM by roberto perini

    Fail to configure Management Console for HTTPS in a Managed Domain

    roberto perini Newbie

      Can you help me ? I have problem to configure the https for management console to port 9993, I followed the step in manual but don’t work, this is the steps:

      1. generate a keystore from the terminal:

      keytool -genkeypair -alias appserver -storetype jks -keyalg RSA -keysize

      2048 -keypass password1 -keystore

      EAP_HOME/standalone/configuration/identity.jks -storepass password1 -dname

      "CN=appserver,OU=Sales,O=Systems Inc,L=Raleigh,ST=NC,C=US" -validity 730 -

       

      1. from cli connection:

      [domain@IP:9990 /] /host=master/core-service=management/management-interface=http-interface:write-attribute(name=secure-port, value=9993)

      [domain@IP:9990 /] /host=master/core-service=management/management-interface=http-interface:undefine-attribute(name=port)

      [domain@IP:9990 /] /host=master/core-service=management/security-realm=ManagementRealmHTTPS/:add

      [domain@IP:9990 /] /host=master/core-service=management/security-realm=ManagementRealmHTTPS/authentication=properties/:add(path=https-mgmt-users.properties,relative-to=jboss.server.config.dir)

      1. from terminal:

      touch /usr/share/jboss-eap-7.0/domain_m/configuration/https-mgmt-users.properties

      ./add-user.sh -up /usr/share/jboss-eap-7.0/domain_m/configuration/https-mgmt-users.properties -r ManagementRealmHTTPS

      1. from cli connection:

      [domain@IP:9990 /] /host=master/core-service=management/management-interface=http-interface/:write-attribute(name=security-realm,value=ManagementRealmHTTPS)

      [domain@IP:9990 /]/host=master/core-service=management/security-realm=ManagementRealmHTTPS/server-identity=ssl:add(keystore-path=identity.jks,keystore-relative-to=jboss.server.config.dir,keystore-password=password1, alias=appserver)

      [domain@IP:9990 /]reload –host=master

       

      When the domain restart the console.log display the following error:

      [Host Controller] 11:45:02,234 ERROR [org.jboss.as.controller.management-operation] (Controller Boot Thread) WFLYCTL0013: Operation ("add") failed - address: ([

      [Host Controller]     ("host" => "master"),

      [Host Controller]     ("core-service" => "management"),

      [Host Controller]     ("management-interface" => "http-interface")

      [Host Controller] ]) - failure description: {"WFLYCTL0288: One or more services were unable to start due to one or more indirect dependencies not being available." => {

      [Host Controller]     "Services that were unable to start:" => [

      [Host Controller]         "jboss.remoting.authentication_provider.http-management",

      [Host Controller] "jboss.serverManagement.controller.management.http",

      [Host Controller] "jboss.serverManagement.controller.management.http.shutdown"

      [Host Controller]     ],

      [Host Controller]     "Services that may be the cause:" => ["jboss.server.path.\"jboss.server.config.dir\""]