Closing this email thread out.  After re-reading that comment, I was able to 
use the IP range list and now I am able to access the admin console again from 
another server.

Regards,

-----Original Message-----
From: Mau, I-Min <[email protected]>
Sent: Tuesday, June 23, 2026 4:19 PM
To: [email protected]
Cc: Mau, I-Min <[email protected]>
Subject: RE: ActiveMQ Admin console now hitting 403 error with 5.19.7

I found this and updated this on jetty.xml  per instructed but no luck

<!--
        IP-based access control for the web console.
        Patterns accept: exact IP (192.168.1.1), CIDR (10.0.0.0/8),
        range (10.0.0.0-10.255.255.255), or qualified with path/connector
        using '|' (e.g. 192.168.1.0/24|/api).
        Exclude rules take precedence over include rules.
        With the default host binding of 127.0.0.1, only localhost is reachable;
        if the bind address is broadened (e.g. 0.0.0.0), add explicit include
        entries below for the networks that should reach the console.
    -->

  <!-- Allowed clients (include rules) -->
    <bean id="inetAccessIncludeLoopbackV4" 
class="org.springframework.beans.factory.config.MethodInvokingFactoryBean">
        <property name="targetObject" ref="inetAccessHandler"/>
        <property name="targetMethod" value="include"/>
        <property name="arguments">
            <list><value>0.0.0.0</value></list>
        </property>
    </bean>

-----Original Message-----
From: Mau, I-Min
Sent: Tuesday, June 23, 2026 4:01 PM
To: '[email protected]' <[email protected]>
Cc: Mau, I-Min <[email protected]>
Subject: RE: ActiveMQ Admin console now hitting 403 error with 5.19.7

Making some progress, sort of.
So what I have determined, at least on the VM set up I have here, is that the 
admin console is perfectly fine and accessible on that same server at 
http://localhost:8161/admin/

But not from the other server even though in the jetty.xml, I have the host 
setting changed from 127.0.0.1 to 0.0.0.0 as I have done in the past.

Regards,

-----Original Message-----
From: Mau, I-Min via users <[email protected]>
Sent: Monday, June 22, 2026 5:07 PM
To: [email protected]
Cc: Mau, I-Min <[email protected]>
Subject: ActiveMQ Admin console now hitting 403 error with 5.19.7

Hi all,

I just tried out ActiveMQ 5.19.7 today and when accessing the admin console, got

HTTP ERROR 403 Forbidden
URI:
/admin
STATUS:
403
MESSAGE:
Forbidden
SERVLET:
-

I tried to Google and it does seem to be due to the security tightening in this 
patch. But so far I am not sure if understood exactly what is it I need to 
change to make this work anymore.
Please help,

Thanks,

The information contained in this message is proprietary and/or confidential. 
If you are not the intended recipient, please: (i) delete the message and all 
copies; (ii) do not disclose, distribute or use the message in any manner; and 
(iii) notify the sender immediately. In addition, please be aware that any 
message addressed to our domain is subject to archiving and review by persons 
other than the intended recipient. Thank you.
The information contained in this message is proprietary and/or confidential. 
If you are not the intended recipient, please: (i) delete the message and all 
copies; (ii) do not disclose, distribute or use the message in any manner; and 
(iii) notify the sender immediately. In addition, please be aware that any 
message addressed to our domain is subject to archiving and review by persons 
other than the intended recipient. Thank you.

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
For further information, visit: https://activemq.apache.org/contact


Reply via email to