Enabling RBAC for JBoss EAP

15 minutes
  • 4 Learning Objectives

About this Hands-on Lab

Using JBoss EAP for deploying, managing, and creating Java applications means that a variety of users will need access to JBoss’s services and consoles. While JBoss EAP itself provides a simple user script, this often leaves too many security concerns open. Instead, Role-Based Access Control (RBAC) can be used to fine-tune access for JBoss EAP itself and any supported applications.

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Create a Management User
  1. Move into the JBoss home directory.

  2. Create a cloud-user to whom we will grant SuperUser permissions.

Enable RBAC Through the CLI
  1. Start the JBoss CLI.

  2. From here, we can interact with our JBoss setup as we would any virtual machine.

  3. Move into the authorization node.

  4. Change the provider to RBAC.

Grant SuperUser Permissions
  1. While still using the JBoss CLI, grant the cloud-user SuperUser privileges.

  2. Exit the CLI.

  3. Restart JBoss.

Add a User via the Management Interface
  1. Access the management interface at <PUBLIC_IP>:9990 and log in as the cloud-user.

  2. In Access Control, click Start.

  3. From the left menu, click Users.

  4. Click the plus sign to add a user.

  5. In the Add User window, set the following values:

    • Name: louise
    • Include: SuperUser
  6. Leave the rest as their defaults and click Add.

Additional Resources

You have recently taken over JBoss EAP administration for your organization. As part of your efforts as the new admin, you want to enable Role-Based Access Control for your JBoss setup.

Create an administrative user for yourself (the cloud-user), then use the JBoss CLI to enable RBAC. Make sure the cloud-user has the appropriate SuperUser role.

Once enabled, create a louise user via RBAC on the Management Console at <PUBLIC_IP>:9990. This user should be be granted SuperUser permissions and not assigned to a realm.

Log in to the server using the credentials provided.

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!

Get Started
Who’s going to be learning?