How to map application security role names to alternative group names defined in LDAP

Solution Verified - Updated -

Issue

  • Is there some standard way within JBoss EAP to map application security role names (e.g. JBossAdmin for jmx-console) to the alternate group names defined in an external LDAP source?
  • I would like to be able to use Active Directory to allow users access to jmx console but the users are not in a JBossAdmin role and I don't want to edit the web.xml. For instance  a role such as  jb_admin from LDAP and then map it to JBossAdmin
  • Getting the issue "Username client1 does NOT have role JBossAdmin", how to map a new user with the role JBossAdmin when configured jmx-console with ActiveDirectory?

Environment

  • JBoss Enterprise Application Platform (EAP)
    • 4.x
  • JBoss Enterprise Application Platform (EAP)
    • 5.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.