简体繁体中英

How to disable access to jboss admin console in Jboss-eap-5.1

原文 2016-11-24 08:27:13 3 2 jboss/ console/ redhat/ jboss5.x

I have a requirement to disable access to jboss admin console. URL for that is http://[hostname]:[port]/admin-console/login.seam

Jboss version is jboss-eap-5.1

Operating System is Red Hat Enterprise Linux Server release 6.2 (Santiago)

I went through blogs/sites, but most of them are talking about enabling the security for console or managing the on-demand deployment. But this is not what we want. In our case, No user (internal/external) should be able to access the admin console.

few of them are:

https://docs.jboss.org/jbossas/6/Admin_Console_Guide/en-US/html/Administration_Console_User_Guide-Accessing_the_Console.html

https://www.outsystems.com/forums/discussion/10479/tip-activating-admin-console-and-jmx-console-in-jboss-5-x-and-securing-access/

This link talks about the same but for version 6x. which has different directory structure than 5x. https://access.redhat.com/solutions/192483

Please Help!!

2 answers

You can disable the jmx console application. To do it:

1 - Go to JBoss deploy folder

2 - Rename the folder jmx-console.war to jmx-console.war.rej

Or, you can remove the jmx-invoker service:

1 - Go to JBoss deploy folder

2 - Rename the file jmx-invoker-service.xml to jmx-invoker-service.xml.rej

Ps.: Renaming the files to '.rej' is just a way to see that the files are still there (But JBoss will ignore). You can as well delete these files/folders I mentioned.

We have finally decided how to fix this (credit to Elvis Rocha also for giving the suggestion).

For this, we have made changes at jboss level to disable below URLs

1) To disable https://<host>:<port>/admin-console/login.seam - Rename “admin-console.war” file as “admin-console_disabled” under location <jboss_home>/server/<server_name>/deploy

2) To disable https://<host>:<port>/jmx-console - Rename “jmx-console.war” file as “jmx-console_disabled” under location <jboss_home>/server/<server_name>/deploy

3) To disable https://<host>:<port> - Rename “index.html” file as “index_disabled” under location <jboss_home>/server/<server_name>/deploy/ROOT.war

Note - Remember that these are for jboss version 5.1. If you have any other version then file and path might change accordingly.

jboss-eap-5.1 heap out of memory

How to take thread dump in Linux environment using jboss-eap-5.1 server

JBoss EAP 5.1 - JBossGenericPrincipal

Eclipse for JBoss EAP 5.1

what is the default admin console password for Jboss EAP 6

Is it possible to disable traces printed to console in JBoss 5.1?

Increase memory in Jboss eap 5.1

How to permanently disable logging in JBoss 7/EAP6?

how to enable admin console in jboss

Application logs are not in Jboss EAP console

暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question jboss-eap-5.1 heap out of memory How to take thread dump in Linux environment using jboss-eap-5.1 server JBoss EAP 5.1 - JBossGenericPrincipal Eclipse for JBoss EAP 5.1 what is the default admin console password for Jboss EAP 6 Is it possible to disable traces printed to console in JBoss 5.1? Increase memory in Jboss eap 5.1 How to permanently disable logging in JBoss 7/EAP6? how to enable admin console in jboss Application logs are not in Jboss EAP console

Related Tags

How to disable access to jboss admin console in Jboss-eap-5.1

Question

2 answers

solution1
1 2016-11-24 12:58:57

solution2
1 2017-12-01 05:42:54

How to disable access to jboss admin console in Jboss-eap-5.1

Question

2 answers

solution1 1 2016-11-24 12:58:57

solution2 1 2017-12-01 05:42:54

solution1
1 2016-11-24 12:58:57

solution2
1 2017-12-01 05:42:54