[jboss-user] [Security & JAAS/JBoss] - Re: How to configure
Same problem with me...:( View the original post : http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4214587#4214587 Reply to the post : http://www.jboss.org/index.html?module=bb&op=posting&mode=reply&p=4214587 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [Security & JAAS/JBoss] - Re: How to configure
hello people, Now I'm getting some error: | 2008-04-17 18:02:47,113 DEBUG [org.jboss.security.auth.login.XMLLoginConfig] Starting jboss.security:service=XMLLoginConfig | 2008-04-17 18:02:47,113 DEBUG [org.jboss.security.auth.login.XMLLoginConfigImpl] Try loading config as XML, url=file:/C:/jboss-portal-2.6.4/server/default/conf/login-config.xml | 2008-04-17 18:02:47,254 DEBUG [org.jboss.security.auth.login.XMLLoginConfigImpl] Failed to load config as XML | org.jboss.xb.binding.JBossXBException: Failed to parse source: The element type "authentication" must be terminated by the matching end-tag "". @ *unknown*[166,4] | at org.jboss.xb.binding.parser.sax.SaxJBossXBParser.parse(SaxJBossXBParser.java:193) | at org.jboss.xb.binding.UnmarshallerImpl.unmarshal(UnmarshallerImpl.java:158) | at org.jboss.security.auth.login.XMLLoginConfigImpl.loadXMLConfig(XMLLoginConfigImpl.java:324) | at org.jboss.security.auth.login.XMLLoginConfigImpl.loadConfig(XMLLoginConfigImpl.java:288) | at org.jboss.security.auth.login.XMLLoginConfigImpl.loadConfig(XMLLoginConfigImpl.java:268) | at org.jboss.security.auth.login.XMLLoginConfig.startService(XMLLoginConfig.java:176) | at org.jboss.system.ServiceMBeanSupport.jbossInternalStart(ServiceMBeanSupport.java:289) | at org.jboss.system.ServiceMBeanSupport.jbossInternalLifecycle(ServiceMBeanSupport.java:245) | at sun.reflect.GeneratedMethodAccessor3.invoke(Unknown Source) | at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) | at java.lang.reflect.Method.invoke(Method.java:597) | at org.jboss.mx.interceptor.ReflectedDispatcher.invoke(ReflectedDispatcher.java:155) | at org.jboss.mx.server.Invocation.dispatch(Invocation.java:94) | at org.jboss.mx.server.Invocation.invoke(Invocation.java:86) | at org.jboss.mx.server.AbstractMBeanInvoker.invoke(AbstractMBeanInvoker.java:264) | at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:659) | at org.jboss.system.ServiceController$ServiceProxy.invoke(ServiceController.java:978) | at $Proxy0.start(Unknown Source) | at org.jboss.system.ServiceController.start(ServiceController.java:417) | at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) | at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) | at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) | at java.lang.reflect.Method.invoke(Method.java:597) | at org.jboss.mx.interceptor.ReflectedDispatcher.invoke(ReflectedDispatcher.java:155) | at org.jboss.mx.server.Invocation.dispatch(Invocation.java:94) | at org.jboss.mx.server.Invocation.invoke(Invocation.java:86) | at org.jboss.mx.server.AbstractMBeanInvoker.invoke(AbstractMBeanInvoker.java:264) | at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:659) | at org.jboss.mx.util.MBeanProxyExt.invoke(MBeanProxyExt.java:210) | at $Proxy4.start(Unknown Source) | at org.jboss.deployment.SARDeployer.start(SARDeployer.java:302) | at org.jboss.deployment.MainDeployer.start(MainDeployer.java:1025) | at org.jboss.deployment.MainDeployer.deploy(MainDeployer.java:819) | at org.jboss.deployment.MainDeployer.deploy(MainDeployer.java:782) | at org.jboss.deployment.MainDeployer.deploy(MainDeployer.java:766) | at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method) | at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39) | at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25) | at java.lang.reflect.Method.invoke(Method.java:597) | at org.jboss.mx.interceptor.ReflectedDispatcher.invoke(ReflectedDispatcher.java:155) | at org.jboss.mx.server.Invocation.dispatch(Invocation.java:94) | at org.jboss.mx.interceptor.AbstractInterceptor.invoke(AbstractInterceptor.java:133) | at org.jboss.mx.server.Invocation.invoke(Invocation.java:88) | at org.jboss.mx.interceptor.ModelMBeanOperationInterceptor.invoke(ModelMBeanOperationInterceptor.java:142) | at org.jboss.mx.server.Invocation.invoke(Invocation.java:88) | at org.jboss.mx.server.AbstractMBeanInvoker.invoke(AbstractMBeanInvoker.java:264) | at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:659) | at org.jboss.mx.util.MBeanProxyExt.invoke(MBeanProxyExt.java:210) | at $Proxy5.deploy(Unknown Source) | at org.jboss.system.server.ServerImpl.doStart(ServerImpl.java:482) | at org.jboss.system.server.ServerImpl.start(ServerImpl.java:362) | at org.jboss.Main.boot(Main.java:200) | at org.jboss.Main$1.run(Main.java:508) | at java.lang.Thread.run(Thread.java:619) | Caused by: org.xml.sax.SAXException: The element type "authentication" must be terminated by the matc
[jboss-user] [Security & JAAS/JBoss] - Re: How to configure
"draggy" wrote : Hello JBoss experts and professionals, | | Currently, IÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂâÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂÃÂm using JBoss Portal 2.6.4 bundle with Application server 4.2.2 and referring to http://wiki.jboss.org/wiki/NegotiateKerberos about | | | | 3. Modify the ${jboss.server.dir}/conf/jboss-service.xml (if you installed via the JBoss Installer Jar, then the file you need to edit is ${jboss.server.dir}/deploy/security-service.xml) in the server you copied the jars to. You need to change the "jboss.security:service=JaasSecurityManager MBean" to use the new callback handler included with the negotiate jar. | | You need to find the mbean definition in the file, and add or change the CallbackHandlerClassName? attribute to be the following: | | | | org.jboss.web.tomcat.security.AdvancedWebCallbackHandler | | | | for 4.04 you may need to use ${jboss.server.dir}/deploy/security-service.xml) event it is not installed using the JBoss Installer Jar. | | | | for 4.05 you may need to use ${jboss.server.dir}\deploy\security.sar\META-INF\jboss-service.xml | | | | I am not sure how to configure this particular parts: | | | | You need to find the mbean definition in the file, and add or change the CallbackHandlerClassName? attribute to be the following: | | | | org.jboss.web.tomcat.security.AdvancedWebCallbackHandler | | | | And | | | | for 4.04 you may need to use ${jboss.server.dir}/deploy/security-service.xml) event it is not installed using the JBoss Installer Jar. | | | | for 4.05 you may need to use ${jboss.server.dir}\deploy\security.sar\META-INF\jboss-service.xml | | | | However, I have managed to find JAAS in my jboss-service.xml: | | | | | | | | | | true | | org.jboss.security.plugins.JaasSecurityManager | | anonymous | | | | 1800 | | | | 60 | | | | false | | | | | | May I know how to configure it? | | Thank you | is it just add the | org.jboss.web.tomcat.security.AdvancedWebCallbackHandler | just like this: | | | | true | org.jboss.web.tomcat.security.AdvancedWebCallbackHandler | org.jboss.security.plugins.JaasSecurityManager | anonymous | | 1800 | | 60 | | false | | is it correct? Thank you View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4144732#4144732 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4144732 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [Security & JAAS/JBoss] - Re: How to configure JBoss AS to use SSL (https)
Hello, thank you for the links, now I understand it a little better. The rest of my post was intended as a please-help-me-request, but I managed to solve the problem by myself. :)) So, interested readers can use it as a guideline for setting up SSL for a single Seam application on a JBoss Server. (Seam 2.0.0 and Jboss 4.2.0) Thanks a lot and have fun, Pete btw: the other non-https-application on the same server is still working. --- Enabled SSL in the file "server.xml" in my deploy-directory by uncommenting the following entry: Added the following parameters to the above tag: keystoreFile="${jboss.server.home.dir}/conf/myapp.keystore" | keystorePass="topsecretpwd" Enabled SSL in the desired seam application by editing pages.xml: ... Created a key with the keytool with the following command: keytool -keystore jboss-dir\server}default\conf\myapp.keystore -genkey -alias myalias -keypass mypassword I was prompted for the keystore-password, where I used the one from the server.xml (topsecretpwd) and I can see the key, when I list all keys with: keytool -keystore jboss-dir\server}default\conf\myapp.keystore -list | myalias, 02.04.2008, keyEntry, | Zertifikatsfingerabdruck (MD5): XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:04:E4:F7:8A:6A:FE View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4141136#4141136 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4141136 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [Security & JAAS/JBoss] - Re: How to configure JBoss AS to use SSL (https)
"pete007" wrote : | | ps: not that important, but interesting: if I have a domain, where do I get a trusted key for it? Certificate Authorities http://en.wikipedia.org/wiki/Certificate_authority. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4140614#4140614 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4140614 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [Security & JAAS/JBoss] - Re: How to configure JBoss AS to use SSL (https)
See this thread http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4125636 View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4140611#4140611 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4140611 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user
[jboss-user] [Security & JAAS/JBoss] - Re: how to configure JBoss to access Active Directory
Thanks for the reply. I configured JBoss to make it access Active Directory, but not working. What i want to know is. what are the different files that we have to alter to make it work? i think i am missing some thing. View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=3987784#3987784 Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=3987784 ___ jboss-user mailing list jboss-user@lists.jboss.org https://lists.jboss.org/mailman/listinfo/jboss-user