Uploaded image for project: 'WildFly Core'
  1. WildFly Core
  2. WFCORE-5650

Adding management user newly requires reload

XMLWordPrintable

    • Hide
      1. Run server: ./standalone.sh
      2. Add management user: ./add-user.sh jbond pass007
      3. Try to connect: ./jboss-cli.sh -c --user=jbond --password=pass007
        Output: 
        Failed to connect to the controller: Unable to authenticate against controller at localhost:9990: Authentication failed: all available authentication mechanisms failed:
   DIGEST-MD5: javax.security.sasl.SaslException: DIGEST-MD5: Server rejected authentication
      4. Reload: ./jboss-cli.sh -c --commands=reload
      5. Try to connect again: ./jboss-cli.sh -c --user=jbond --password=pass007
        Success: [standalone@localhost:9990]
      Show
      Run server: ./standalone.sh Add management user: ./add-user.sh jbond pass007 Try to connect: ./jboss-cli.sh -c --user=jbond --password=pass007 Output: Failed to connect to the controller: Unable to authenticate against controller at localhost:9990: Authentication failed: all available authentication mechanisms failed: DIGEST-MD5: javax.security.sasl.SaslException: DIGEST-MD5: Server rejected authentication Reload: ./jboss-cli.sh -c --commands=reload Try to connect again: ./jboss-cli.sh -c --user=jbond --password=pass007 Success: [standalone@localhost:9990]
    • Workaround Exists
    • Hide

      The properties-realm can be reloaded using the CLI without needing to reload the whole server.

      Show
      The properties-realm can be reloaded using the CLI without needing to reload the whole server.

      After adding management user customer needs to reload server to be able to log in with the created user. This is regression compared to previous version 24.

      This affects obviously web console users as well.

      In the old implementation the lastModified method was used to reload the properties file if needed (see here). But when switching to elytron this is not done anymore.

      The full reload of the server can be avoided just re-loading the properties realm used for management:

      /subsystem=elytron/properties-realm=ManagementRealm:load()

              rhn-support-rmartinc Ricardo Martin Camarero
              rhn-support-rmartinc Ricardo Martin Camarero
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: