WildFly Security Concepts: Difference between revisions

From NovaOrdis Knowledge Base
Jump to navigation Jump to search
Line 33: Line 33:
Subordinated host controllers must authenticate against the domain controller's Management Realm in order to be able to interact with it. The host controller identity is associated to a domain controller's Management Realm user whose name is identical with the host controller's host name (the <tt><host name="..."></tt> element in the host controller's <tt>[[host.xml]]</tt>.
Subordinated host controllers must authenticate against the domain controller's Management Realm in order to be able to interact with it. The host controller identity is associated to a domain controller's Management Realm user whose name is identical with the host controller's host name (the <tt><host name="..."></tt> element in the host controller's <tt>[[host.xml]]</tt>.


From the domain controller's perspective, the host controller identity is established by adding a regular Management Realm user with the <tt>[[add-user.sh]]</tt> utility.
From the domain controller's perspective, the host controller identity is established by adding a regular Management Realm user with the <tt>[[add-user.sh]]</tt> utility, as described here:
 
<blockquote style="background-color: #f9f9f9; border: solid thin lightgrey;">
:[[Adding Users to WildFly Security Realms#Add_a_User_to_the_Management_Realm|Adding a User to the Management Realm]]
</blockquote>


==Configuration==
==Configuration==

Revision as of 01:04, 19 February 2016




in process of being migrated from https://home.feodorov.com:9443/wiki/Wiki.jsp?page=JBoss7SecurityConcepts




Internal

Relevance

  • EAP 6.4 August 2015

Security Realms

Security Realms

The Security Subsystem

Security Subsystem Concepts

Relationship between a Security Realm and a Security Domain

Subordinated Host Controller Identity

Subordinated host controllers must authenticate against the domain controller's Management Realm in order to be able to interact with it. The host controller identity is associated to a domain controller's Management Realm user whose name is identical with the host controller's host name (the <host name="..."> element in the host controller's host.xml.

From the domain controller's perspective, the host controller identity is established by adding a regular Management Realm user with the add-user.sh utility, as described here:

Adding a User to the Management Realm

Configuration

Subordinated Host Controller Identity Configuration