2.4. Configuring Roles for the Administrative Protocols

Overview

By configuring each of the administrative functions to use a different role for authorization, you can provide fine grained control over who can monitor and manipulate running containers.

Administration protocols

You can independently configure roles for the following different administrative protocols:

SSH (remote console login)
JMX management

Default role

The default role name for all of the administration protocols is set by the karaf.admin.role property in the Red Hat JBoss Fuse's etc/system.properties file. For example, the default setting of karaf.admin.role is:

karaf.admin.role=admin

You have the option of overriding the default admin role set by karaf.admin.role for each of the administrative protocols.

Changing the remote console's role

To override the default role for the remote console add a sshRole property to the org.apache.karaf.shell PID. The following sets the role to admin:

sshRole=admin

Changing the JMX role

To override the default role for JMX add a jmxRole property to the org.apache.karaf.management PID. The following sets the role to jmx:

jmxRole=jmx

Where did the comment section go?

Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories