[ https://issues.jboss.org/browse/WFLY-1895?page=com.atlassian.jira.plugin.... ] Brian Stansberry commented on WFLY-1895: ---------------------------------------- With no security realm configured on the interface and the 'simple' provider chosen, behavior is as expected: anyone can connect and administer. With no security realm configured on the interface and the 'rbac' provider chosen, console behavior is pretty good. The user gets an unauthorized dialogue with no prompt to authenticate. Minor flaw is that dialogue is dismissed with a button that says "Logout" which in incorrect, since in this case the user didn't log in. With no security realm configured on the interface and the 'rbac' provider chosen, CLI behavior is not very intuitive. You can connect and you get the [standalone@localhost:9990 /] prompt. But if you attempt to do anything the requires server-side work you get various errors indicating your aren't authorized. -- This message is automatically generated by JIRA. If you think it was sent incorrectly, please contact your JIRA administrators For more information on JIRA, see: http://www.atlassian.com/software/jira