[jboss-user] [Management, JMX/JBoss] - Re: Securing JMX console (JBoss)
mcdan311
do-not-reply at jboss.com
Fri Apr 4 15:29:30 EDT 2008
this is the correct script:
<!-- A security constraint that restricts access to the HTML JMX console
to users with the role JBossAdmin. Edit the roles to what you want and
uncomment the WEB-INF/jboss-web.xml/security-domain element to enable
secured access to the HTML JMX console.
<!-- A security constraint that restricts access to the HTML JMX console
to users with the role JBossAdmin. Edit the roles to what you want and
uncomment the WEB-INF/jboss-web.xml/security-domain element to enable
secured access to the HTML JMX console.
-->
<security-constraint>
<web-resource-collection>
<web-resource-name>HtmlAdaptor</web-resource-name>
An example security config that only allows users with the
role JBossAdmin to access the HTML JMX console web application
<url-pattern>/*</url-pattern>
<http-method>GET</http-method>
<http-method>POST</http-method>
</web-resource-collection>
<auth-constraint>
<role-name>JBossAdmin</role-name>
</auth-constraint>
</security-constraint>
<login-config>
<auth-method>BASIC</auth-method>
<realm-name>JBoss JMX Console</realm-name>
</login-config>
<security-role>
<role-name>JBossAdmin</role-name>
</security-role>
</web-app>
Please disregard previous script.
Thanks
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4141735#4141735
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4141735
More information about the jboss-user
mailing list