Bug 1024842 - Update LDAP authentication to secure also native-interface
Summary: Update LDAP authentication to secure also native-interface
Alias: None
Product: JBoss Enterprise Application Platform 6
Classification: JBoss
Component: Installer
Version: 6.2.0
Hardware: Unspecified
OS: Unspecified
Target Milestone: ER7
: EAP 6.2.0
Assignee: Thomas Hauser
QA Contact: Petr Kremensky
Depends On:
TreeView+ depends on / blocked
Reported: 2013-10-30 13:50 UTC by Petr Kremensky
Modified: 2017-10-10 00:19 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Last Closed: 2013-12-15 16:55:41 UTC
Type: Bug

Attachments (Terms of Use)

System ID Private Priority Status Summary Last Updated
Red Hat Bugzilla 1006540 0 unspecified CLOSED Installer: Enable LDAP authentication 2021-02-22 00:41:40 UTC

Internal Links: 1006540

Description Petr Kremensky 2013-10-30 13:50:45 UTC
Description of problem:
 Since BZ1006540 user is able to configure LDAP authentication via installer, but only http-interface is secured by new LDAP security realm, we should secure also native-interface.

Version-Release number of selected component (if applicable):
 EAP 6.2.0.ER6

How reproducible:

Steps to Reproduce:
 1. Run GUI installer.
 2. Select to Enable LDAP authentication on Post-Install Configuration
 3. Finish the installation

Actual results:
 Only http-interface is secured

Expected results:
 Both management-interfaces should be secured by newly created LDAP security realm.

Additional info:
Adding following command to batch should do the work (only standalone):
/core-service=management/management-interface=native-interface:write-attribute(name=security-realm, value="ldap_security_realm")

Comment 1 Francisco Canas 2013-11-01 17:17:04 UTC
The fix for this was in the ER7 build, but the issue slipped under the radar and we didn't mark is as MODIFIED beforehand. 

LDAP is now applied to both http and native management interfaces for each of the server configs.


Comment 2 Petr Kremensky 2013-11-04 07:54:25 UTC
Verified on EAP 6.2.0.ER7 installer. 

host-slave.xml and host-master.xml config files still use ManagementRealm for securing the management interfaces, but I believe this is covered by BZ1025340.

Note You need to log in before you can comment on or make changes to this bug.