1168900 – Kerberos authentication for Management CLI uses interactive mode incorrectly

Bug 1168900 - Kerberos authentication for Management CLI uses interactive mode incorrectly

Summary: Kerberos authentication for Management CLI uses interactive mode incorrectly

Keywords:
Status:	CLOSED CURRENTRELEASE
Alias:	None
Product:	JBoss Enterprise Application Platform 6
Classification:	JBoss
Component:	Domain Management
Sub Component:
Version:	6.4.0
Hardware:	Unspecified
OS:	Unspecified
Priority:	unspecified
Severity:	medium
Target Milestone:	DR13
Target Release:	EAP 6.4.0
Assignee:	Darran Lofthouse
QA Contact:	Pavel Slavicek
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2014-11-28 11:25 UTC by Ondrej Lukas
Modified:	2019-08-19 12:44 UTC (History)
CC List:	2 users (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2019-08-19 12:44:14 UTC
Type:	Bug
Embargoed:

Attachments	(Terms of Use)

Links
System	ID	Private	Priority	Status	Summary	Last Updated
Red Hat Issue Tracker	EAP6-174	0	Major	Closed	Kerberos based authentication for Remoting	2015-08-20 05:04:58 UTC
Red Hat Issue Tracker	WFCORE-445	0	Major	Resolved	Add support for some default JAAS configs for use by GSSAPI in the CLI	2015-08-20 05:04:58 UTC

Description Ondrej Lukas 2014-11-28 11:25:11 UTC

In case when kerberos authentication is correctly configured in security realm and user without correct kerberos ticket tries to connect to Management CLI, then Management CLI asks for kerberos username in interactive mode; yet user cannot input username due to console limitations. Maybe better solution is not to allow interactive mode for kerberos authentication for user without ticket at all?

Comment 1 Darran Lofthouse 2014-12-04 17:40:07 UTC

I will submit a fix for this along with some other fixes, for some other BZs raised I am having to add some default JAAS configuration, what I will do is disable interactive mode for Kerberos authentication at the same time.

Comment 3 Ondrej Lukas 2014-12-12 14:00:38 UTC

Verified in EAP 6.4.0.DR13.

Comment 4 JBoss JIRA Server 2015-04-28 15:05:32 UTC

John Doyle <jdoyle> updated the status of jira EAP6-174 to Closed

Note You need to log in before you can comment on or make changes to this bug.