Internal

• Adding Users to WildFly Security Realms

Configuring add-user.sh to Interact with Other Storage than standalone/configuration and domain/configuration

Call add-user.sh with the following flags:

-sc <dir> Define the location the server config directory.

-dc <dir> Define the location of the domain config directory.

Similar effects could be obtained by manipulating JAVA_OPTS as follows:

JAVA_OPTS="$JAVA_OPTS \
-Djboss.server.config.user.dir=../standalone/configuration \
-Djboss.domain.config.user.dir=../domain/configuration"

For details on how to create a dedicated wrapper for a custom profile, see [WildFly Isolated Self-Contained Standalone Profile].

Debug add-user.sh

JAVA_OPTS="$JAVA_OPTS -agentlib:jdwp=transport=dt_socket,address=8787,server=y,suspend=y"

Password Strength

Password strength is verified and enforced by add-user.sh. The behavior can be configured in $JBOSS_HOME/bin/add-user.properties. The following settings are available:

password.restriction=REJECT
password.restriction.minLength=8
password.restriction.minAlpha=1
password.restriction.minDigit=1
password.restriction.minSymbol=1
password.restriction.mustNotMatchUsername=TRUE
password.restriction.forbiddenValue=root,admin,administrator
# Password strength. Valid values: VERY_WEAK, WEAK, MODERATE, MEDIUM, STRONG, VERY_STRONG or EXCEPTIONAL.
password.restriction.strength=MEDIUM

Password strength strict enforcement can be relaxed with:

password.restriction=WARN

-s (Silent Mode)

-s or --silent activate the silent mode (no output to the console).

Adding a User to the Management Realm

Adding a User to the Management Realm

Add a User to the Management Realm as part of an Automated Procedure

add-user.sh can be used in non-interactive mode, as part of an installation script, as follows:

${JBOSS_HOME}/bin/add-user.sh -r ManagementRealm -u admin -p admin123

Adding a User to the ApplicationRealm

Adding a User to the Application Realm