I am working with Jboss 3.2.2RC3 and I am trying to allow authentication for jmx-console. Under jmx-console.war I see several files I need to modify.
I have to uncomment the line
<security-domain>java:/jaas/jmx-console</security-domain>
in jboss-web.xml
Also, I have to uncomment
<security-constraint>
<web-resource-collection>
<web-resource-name>HtmlAdaptor</web-resource-name>
An example security config that only allows users with the
role JBossAdmin to access the HTML JMX console web application
<url-pattern>/*</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
</web-resource-collection>
<auth-constraint>
<role-name>JBossAdmin</role-name>
</auth-constraint>
</security-constraint>
in web.xml
Also, I need to modify
users.properties
and
roles.properties
It is not obvious how I need to modify those files.
For instance, if I need user user1 with password password1 and user user2 with password password2 to be able to access jmx-console, I need to be able to set JBossAdmin role for those two users.
How can I do that? I do not know how.
I figured that out.