[wildfly-dev] How to map a client certificate to a management user?

Thomas Segismont tsegismo at redhat.com
Thu Jan 23 07:30:24 EST 2014 

Yes, that works too. Thanks for your help.

Le 23/01/2014 13:15, Darran Lofthouse a écrit :
> Should add the workaround would be to just add a dummy user definition
> to the properties file so that one user is defined - the password hash
> does not need to be a valid hash.
>
> On 23/01/14 12:14, Darran Lofthouse wrote:
>> I believe you are running into an old bug, in later releases that page
>> should no longer be displayed if a trust store is defined against the realm.
>>
>> Regards,
>> Darran Lofthouse.
>>
>>
>> On 23/01/14 11:32, Thomas Segismont wrote:
>>> Hi,
>>>
>>> I have setup client certificate authentication on AS7.1.1 with this
>>> Management realm definition:
>>>
>>> <security-realm name="ManagementRealm">
>>>         <server-identities>
>>>             <ssl>
>>>                 <keystore path="server.jks"
>>> relative-to="jboss.server.config.dir" password="abcdef"/>
>>>             </ssl>
>>>         </server-identities>
>>>         <authentication>
>>>             <truststore path="server.jks"
>>> relative-to="jboss.server.config.dir" password="abcdef" />
>>>             <properties path="mgmt-users.properties" relative
>>> to="jboss.server.config.dir"/>
>>>         </authentication>
>>> </security-realm>
>>>
>>> When I try to browse the admin console in Firefox, it asks me to confirm
>>> I want to authenticate with the client cert (good) and then I can only
>>> see the error page:
>>>
>>> ===
>>> Your JBoss Application Server 7 is running.
>>>
>>> However you have not yet added any users to be able to access the admin
>>> console.
>>> ===
>>>
>>> How can I map a client certificate to a management user?
>>>
>>> Thanks for your help,
>>> Thomas
>>> _______________________________________________
>>> wildfly-dev mailing list
>>> wildfly-dev at lists.jboss.org
>>> https://lists.jboss.org/mailman/listinfo/wildfly-dev
>>>
>> _______________________________________________
>> wildfly-dev mailing list
>> wildfly-dev at lists.jboss.org
>> https://lists.jboss.org/mailman/listinfo/wildfly-dev
>>
> _______________________________________________
> wildfly-dev mailing list
> wildfly-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/wildfly-dev
>

More information about the wildfly-dev mailing list