Bug 1034775

Summary: [Doc Bug Fix] User Management section to introduce LDAP & RBAC
Product: [JBoss] JBoss Enterprise Application Platform 6 Reporter: Catherine Robson <crobson>
Component: DocumentationAssignee: Andrea Hoffer <ahoffer>
Status: CLOSED CURRENTRELEASE QA Contact: Marek Kopecky <mkopecky>
Severity: high Docs Contact:
Priority: unspecified    
Version: 6.0.0CC: dmichael, jkudrnac, smumford
Target Milestone: post-GAKeywords: Documentation, FutureFeature, Triaged
Target Release: EAP 6.4.3   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Enhancement
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2015-10-20 12:53:58 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Catherine Robson 2013-11-26 13:37:44 UTC 
Description of problem:  Today's user management section in the Administration and Configuration guide make no mention of how to use LDAP and RBAC.  Users don't necessarily expect to only find this information in the security guide, and it makes the "User Management" section of the Admin&Config guide misleading.


Version-Release number of selected component (if applicable):
6.2.0.Beta


Details:

We should either provide a general overview of the user management options (Local user management w/out RBAC, LDAP user management w/out RBAC, LDAP user management w/ RBAC) in the Installation and Configuration guide and point users to the Security guide for more details about setting it up, or we should provide all the information about LDAP and RBAC as part of the user management section.
Comment 1 Catherine Robson 2013-11-26 13:40:01 UTC 
As part of this overview - it should explain how to have LDAP and Local user enabled together as well.  Once LDAP is set up, you cannot use the local user by default.  

This is true if you remove the <local /> element from the security realm authentication block - i.e. leave the <local /> element within the authentication element if you want local authentication to be available.

Documentation should cover how to set this up so you have LDAP and Local, or exclusively one or the other.
Comment 2 Jakub Cechacek 2014-04-01 09:58:26 UTC 
As for the firs post, I think that a link into appropriate section of documentation (rbac section under security) should be sufficient.
Comment 5 Marek Kopecky 2015-09-10 15:26:43 UTC 
Verified in revision 6.4.0-37