Chapter 10. Post Installation Configuration
10.1. Post Installation Security Configuration
10.1.1. Security Configuration: JMX Console, Admin Console, HttpInvoker
Procedure 10.1. Create jmx-console, admin-console, and http invoker user account
Create a user in the default JAAS security domain
- Edit the file
$JBOSS_HOME/server/$PROFILE/conf/props/jmx-console-users.properties
. - Create a username = password pair.
Important
The commentedadmin=admin
username and password pair is an example of the username/password definition syntax. Do not use this for your user account.
Grant permissions to user
- Edit the file
$JBOSS_HOME/server/$PROFILE/conf/props/jmx-console-roles.properties
. - Create an entry for the user of the form:
username=JBossAdmin,HttpInvoker
- JBossAdmin
- Grant the user permission to access the JMX Console and Admin Console.
- HttpInvoker
- Grant the user permission to access the httpinvoker
10.1.2. Security Configuration: Web Console
Procedure 10.2. Create web console user account
Create a user in the web-console JAAS security domain
- Edit the file
web-console-users.properties
injboss-as/server/$PROFILE/deploy/management/console-mgr.sar/web-console.war/WEB-INF/classes/
. - Create a username = password pair.
Important
The commentedadmin=admin
username and password is an example of the username/password definition syntax. Do not use this for your user account.
Grant permissions to user
- Edit the file
web-console-roles.properties
injboss-as/server/$PROFILE/deploy/management/console-mgr.sar/web-console.war/WEB-INF/classes/
. - Create an entry for the user of the form:
username=JBossAdmin,HttpInvoker
- JBossAdmin
- Grant the user permission to access the Web-Console
- HttpInvoker
- Grant the user permission to access the HTTP Invoker
10.1.3. Security Configuration: JBoss Messaging
suckerPassword
in the configuration file:
Procedure 10.3. Set suckerPassword for JBoss Messaging:
- Edit the file
jboss-as/server/$PROFILE/deploy/messaging/messaging-jboss-beans.xml
. - Change the
suckerPassword
value.