Java Reference
In-Depth Information
/core-service=management/
access=authorization:write-attribute(name=provider,
value=rbac)
Reload the server and log in to the web console again using the account you designed as
SuperUser
.
Note
We are testing the web console, but the RBAC mechanism also works for the CLI. Note
that the CLI will allow you to access it from
localhost
as long as you have the
$loc-
al
user allowed in your security realm:
<security-realm name="ManagementRealm">
<authentication>
<local default-user="$local" allowed-users="*"/>
<properties path="mgmt-users.properties"
relative-to="jboss.server.config.dir"/>
</authentication>
<authorization map-groups-to-roles="false">
<properties path="mgmt-groups.properties"
relative-to="jboss.server.config.dir"/>
</authorization>
</security-realm>
If you wish to disable it, simply remove this line.
If you are wondering what your current role is, you can click on
Username
in the upper-
right corner of the screen. You should see a bit of information about the currently logged-
in administrator in the following screenshot:
