Note: This bug is displayed in read-only format because the product is no longer active in Red Hat Bugzilla.

Bug 899368 (JBEWS-124)

Summary: EWS: Add sample JMX config files.
Product: [JBoss] JBoss Enterprise Web Server 1 Reporter: Ondřej Žižka <ozizka>
Component: unspecifiedAssignee: Coty Sutherland <csutherl>
Status: CLOSED EOL QA Contact:
Severity: high Docs Contact:
Priority: high    
Version: EWS 1.0.2CC: grocha, mjc, ozizka, pcheung
Target Milestone: ---   
Target Release: TBD EWS   
Hardware: Unspecified   
OS: Unspecified   
URL: http://jira.jboss.org/jira/browse/JBEWS-124
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2017-08-04 15:06:25 UTC Type: Feature Request
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
jmxremote.access
none
jmxremote.password none

Description Ondřej Žižka 2011-03-17 20:06:11 UTC 
project_key: JBEWS

We could provide our own sample JMX config files with comments biased towards JON / RHQ.
Would be useful so the user doesn't have to figure out what to put where.
Comment 1 Ondřej Žižka 2011-03-17 20:09:05 UTC 
Sample files attached.
Comment 2 Ondřej Žižka 2011-03-17 20:09:05 UTC 
Attachment: Added: jmxremote.access
Attachment: Added: jmxremote.password
Comment 3 Ondřej Žižka 2011-03-17 20:11:01 UTC 
Link: Added: This issue is related to JBPAPP-6089
Comment 4 Permaine Cheung 2011-03-18 13:16:25 UTC 
Hi Ondrej, is this a docs issue? Can you please assign it accordingly? Thanks!
Comment 5 Ondřej Žižka 2011-03-24 20:25:00 UTC 
Link: Added: This issue is related to JBPAPP-6122
Comment 6 Ondřej Žižka 2011-04-14 11:20:56 UTC 
Hi, not a docs issue.
I'd put the sample files into the distribution archive.
Comment 7 Ondřej Žižka 2011-07-19 19:37:49 UTC 
Mladen, any progress please? I am transfering my issues so I want to know the current status. Thx
Comment 8 Mladen Turk 2011-07-20 08:00:56 UTC 
Permaine, please decide on that.
If it will be part of the next release it should go into the brew Tomcat builds so this is present on all platforms.
Comment 9 Permaine Cheung 2012-06-11 15:43:54 UTC 
Added David from the security team on cc. 
David, is it ok to add these files to the EWS distribution (from a security point of view)?
Comment 10 Arun Neelicattu 2012-06-12 04:32:31 UTC 
Permaine, I just looked at this on behalf of SRT. 

The templates look good from a security perspective. However, one thing that I would like to point out is that using defaults that the user can just drop-deploy may be a security risk, as was the case for the _jmx-console_. 

It might be a good idea to comment out the following lines from [^jmxremote.password] and surround them with a _WARNING_ indicating that the defaults should be changed. This would mean that at the very least the user has to un-comment the lines to get it going and hopefully reading the warning. 
{noformat}
monitorRole  foo
controlRole  foo
{noformat}

Also note that the file permissions should be read/write for the owner only. Ideally _600_. Hope this helps.
Comment 11 Permaine Cheung 2012-06-12 13:04:24 UTC 
Hi David, can you please include these files in the tomcat builds for EWS 2 (as described by Arun) when you have time? Thanks!