Chapter 14. Configuring JAAS Security
14.1. Alternative JAAS Realms
karafrealm name. The standard administration services in JBoss Fuse (SSH remote console, JMX port, and so on) are all configured to use the
karafrealm by default.
Available realm implementations
Standalone JAAS realm
karafrealm installs two JAAS login modules, which are used in parallel:
- Authenticates username/password credentials and stores the secure user data in the
- Authenticates SSH key-based credentials (consisting of a username and a public/private key pair). Secure user data is stored in the
Fabric JAAS realm
karafrealm based on the
ZookeeperLoginModulelogin module is automatically installed in every container (the
fabric-jaasfeature is included in the default profile) and is responsible for securing the SSH remote console and other administrative services. The Zookeeper login module stores the secure user data in the Fabric Registry.
karafrealm with a higher rank.