Configuring composite-store using aggregate realm with Elytron ?

Solution Verified - Updated -


  • PicketBox /legacy security realms allowed us to provide one identity store for authentication and another for authorization information. Can we do the same now?
  • Is there any way to map application properties roles to an LDAP user?
  • How do we configure a composite-store?
  • Can we use properties files to assign roles to a user authenticated in a token-realm?


  • Red Hat JBoss Enterprise Application Platform (EAP)
    • 7.1 or later
  • Elytron
  • Two identity stores: one for authentication and one for authorization.

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In