10.3. Overview of Advanced Management Interface Configuration
EAP_HOME/standalone/configuration/standalone.xmlcontrols which network interfaces the host controller process binds to, which types of management interfaces are available at all, and which type of authentication system is used to authenticate users on each interface. This topic discusses how to configure the Management Interfaces to suit your environment.
<management>element that includes several configurable attributes, and the following three configurable child elements. The security realms and outbound connections are each first defined, and then applied to the management interfaces as attributes.
The security realm is responsible for the authentication and authorization of users allowed to administer JBoss EAP 6 via the Management API, Management CLI, or web-based Management Console.
ApplicationRealm. Each of these security realms uses a
-users.propertiesfile to store users and hashed passwords, and a
-roles.propertiesto store mappings between users and roles. Support is also included for an LDAP-enabled security realm.
Some security realms connect to external interfaces, such as an LDAP server. An outbound connection defines how to make this connection. A pre-defined connection type,
ldap-connection, sets all of the required and optional attributes to connect to the LDAP server and verify the credential.
A management interface includes properties about how connect to and configure JBoss EAP. Such information includes the named network interface, port, security realm, and other configurable information about the interface. Two interfaces are included in a default installation:
http-interfaceis the configuration for the web-based Management Console.
native-interfaceis the configuration for the command-line Management CLI and the REST-like Management API.