1.3. Security Changes
Overriding the default JAAS realm in Fabric
In JBoss A-MQ 6.2, the rank of the default
ZookeeperLoginModule
JAAS module (which is installed by default in a Fabric container) has changed to 99
, and the name of the default realm is karaf
. In previous releases, the rank of ZookeeperLoginModule
realm was just 1
.
Hence, if you want to override the default
karaf
in the context of Fabric, you must define a new realm named karaf
, with a rank
attribute that is greater than or equal to 100
.
Enabling LDAP authentication in a Fabric
In particular, this change affects the configuration needed to enable LDAP authentication in a Fabric. In this case, the
rank
attribute of the jaas:config
element in the JAAS realm configuration file must be increased to at least 100
(recommended is 200
). For details, see section "Procedure for a Fabric" in "Security Guide".