Right, but the descriptor paths are deploy/jmx-console.war/WEB-INF/jboss-web.xml and deploy/jmx-console.war/WEB-INF/web.xml and conf/login-config.xml
-- xxxxxxxxxxxxxxxxxxxxxxxx Scott Stark Chief Technology Officer JBoss Group, LLC xxxxxxxxxxxxxxxxxxxxxxxx
Eric Jain wrote:
is there an easy trick to secure the webconsole with a password?
This is how you could secure the jmx console:
In jmxconsole.sar/META-INF/jboss-web.xml uncomment the security-domain element and set it to one of the application policies you have configured in your login-conf.xml.
In web.xml, uncomment the security-constraint element, and change the role name to whatever you call your admin role.
If you have set up HTTPS, and want to ensure that all access to the jmx console is encrypted, add a user-data-constraint/transport-guarantee INTEGRAL directive as a last element within the security-constraint element.
-- Eric Jain
------------------------------------------------------- This sf.net email is sponsored by:ThinkGeek Welcome to geek heaven. http://thinkgeek.com/sf _______________________________________________ JBoss-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/jboss-user
