2 Replies Latest reply on Jul 2, 2018 1:11 PM by mevans7

WildFly 13, org.jboss.as.remoting, All authentication is ANONYMOUS for org.jboss.as.remoting.RemotingHttpUpgradeService

mevans7 Jun 29, 2018 5:15 PM

2018-06-29 13:53:27,264 WARN [org.jboss.as.remoting] (MSC service thread 1-4) ****** All authentication is ANONYMOUS for org.jboss.as.remoting.RemotingHttpUpgradeService

How do I resolve this?

I have the remoting subsystem configured as follows:

<http-connector name="http-remoting-connector" connector-ref="https"/>

</subsystem>

The ejb3:5.0 subsystem is configured:

...

...

</subsystem>

I haven't converted over to Elytron for security.

1. Re: WildFly 13, org.jboss.as.remoting, All authentication is ANONYMOUS for org.jboss.as.remoting.RemotingHttpUpgradeService

mchoma Jul 2, 2018 1:18 AM (in response to mevans7)

With legacy there is security-realm attribute of http-remoting-connector to secure. But yes you should move to Elytron

[1] Getting started with EJBs and Elytron Part 1: Securing EJBs and invoking them from remote clients
Actions
2. Re: WildFly 13, org.jboss.as.remoting, All authentication is ANONYMOUS for org.jboss.as.remoting.RemotingHttpUpgradeService

mevans7 Jul 2, 2018 1:11 PM (in response to mchoma)

Your answer led me down the path to adding security-realm to:
<http-connector name="http-remoting-connector" connector-ref="https" security-realm="ApplicationRealm"/>
in the jboss:domain:remoting subsystem, then adding a user with add-user.sh, and thus eliminating the warning message. In the recent past, I attempted to configure two-way SSL/TLS but ran into some problems. With two-way SSL/TLS, I still get the above warning. Perhaps I'll eventually use both two-way SSL/TLS along with an identity.

Thank you.
Actions

Go to original post