Securing the management interfaces

One of the most important tasks for the system administrator is restricting access to the server management interfaces. Without a security policy, every user can gain access to the application server and modify its properties.

The attribute that is used to switch on security on the management interface is a security realm that needs to be defined within the security-realms section. Have a look at the following code:

<management>
    <security-realms>
        <security-realm name="ManagementRealm"> <authentication> <local default-user="$local" skip-group-loading="true"/> <properties path="mgmt-users.properties" relative-to="jboss.server.config.dir"/> </authentication> <authorization map-groups-to-roles="false"> <properties ...

Get WildFly Configuration, Deployment, and Administration - Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

WildFly Configuration, Deployment, and Administration - Second Edition by Christopher Ritchie

Securing the management interfaces

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly