[wildfly-dev] How to map a client certificate to a management user?
Darran Lofthouse
darran.lofthouse at jboss.com
Thu Jan 23 07:15:48 EST 2014
Should add the workaround would be to just add a dummy user definition
to the properties file so that one user is defined - the password hash
does not need to be a valid hash.
On 23/01/14 12:14, Darran Lofthouse wrote:
> I believe you are running into an old bug, in later releases that page
> should no longer be displayed if a trust store is defined against the realm.
>
> Regards,
> Darran Lofthouse.
>
>
> On 23/01/14 11:32, Thomas Segismont wrote:
>> Hi,
>>
>> I have setup client certificate authentication on AS7.1.1 with this
>> Management realm definition:
>>
>> <security-realm name="ManagementRealm">
>> <server-identities>
>> <ssl>
>> <keystore path="server.jks"
>> relative-to="jboss.server.config.dir" password="abcdef"/>
>> </ssl>
>> </server-identities>
>> <authentication>
>> <truststore path="server.jks"
>> relative-to="jboss.server.config.dir" password="abcdef" />
>> <properties path="mgmt-users.properties" relative
>> to="jboss.server.config.dir"/>
>> </authentication>
>> </security-realm>
>>
>> When I try to browse the admin console in Firefox, it asks me to confirm
>> I want to authenticate with the client cert (good) and then I can only
>> see the error page:
>>
>> ===
>> Your JBoss Application Server 7 is running.
>>
>> However you have not yet added any users to be able to access the admin
>> console.
>> ===
>>
>> How can I map a client certificate to a management user?
>>
>> Thanks for your help,
>> Thomas
>> _______________________________________________
>> wildfly-dev mailing list
>> wildfly-dev at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/wildfly-dev
>>
> _______________________________________________
> wildfly-dev mailing list
> wildfly-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/wildfly-dev
>
More information about the wildfly-dev
mailing list