Targeting for consideration in JON320
This BZ represents a request that the AS7 / EAP 6 managed plug-in needs to support SSL (HTTPS) along with client auth to handle cases in where the EAP HTTP management interface has been secured using SSL.
Merged in master commit a201914f7204e59fb40ce3eba2cbbea7accd728c Author: Thomas Segismont <tsegismo> Date: Wed Jan 22 16:02:06 2014 +0100
So basically, now AS7/EAP is SSL by default, and requires a lot more configuration on part of user. I think there's a misunderstanding on the meaning of "needs to support" instead of "requires".
(In reply to Stian Lund from comment #10) > So basically, now AS7/EAP is SSL by default, and requires a lot more > configuration on part of user. Who said that? > > I think there's a misunderstanding on the meaning of "needs to support" > instead of "requires". Unless I missed something, AS7Plugin now supports but does not require SSL protected servers.
> Who said that? Well, I said it :) > Unless I missed something, AS7Plugin now supports but does not require SSL protected servers. Well, the problem is, that when discovering new AS7 servers, it uses the management-https port by default, leading to us having to change the port to standard mangement-http manually and turn off encryption. I made a question on the RHQ forums about the same, and asked if there was any setting to override this behaviour. Stian
(In reply to Stian Lund from comment #12) > Well, the problem is, that when discovering new AS7 servers, it uses the > management-https port by default, leading to us having to change the port to > standard mangement-http manually and turn off encryption. > AS7 plugin *chooses* https port if it is configured. It's a preference when both http and https port are accessible.
> AS7 plugin *chooses* https port if it is configured. It's a preference when both http and https port are accessible. Hmm... so any way to override this choice and only use http? Because otherwise we will need to change all our AS7 servers to not have management-https configured or do a lot of changes in RHQ.
Moving to ON_QA as available to test with brew build of DR01: https://brewweb.devel.redhat.com//buildinfo?buildID=373993