Darran Lofthouse [http://community.jboss.org/people/dlofthouse] commented on the document "AS 7.1.0 Beta1 - Security Enabled By Default" To view all comments on this document, visit: http://community.jboss.org/docs/DOC-17367#comment-8609 -------------------------------------------------- Not through configuration (that will be added later once we add authorization checks as that is when an override is going to be most meaningful to force a username and password). For now I would suggest either running the CLI as a different user that does not have access to the AS7 tmp/auth folder or after the auth folder has been created you could try chaning the ownership of it to root:root so neither the AS process or the user will be able ot access it. --------------------------------------------------