1.20 - Remove default roles from production servers - 'jmx-console default role != JBossAdmin|HttpInvoker|friend|guest'

Information

Remove, rename, or comment out the default role definitions in the default <application-policy> elements

Solution

Ensure the default role assignments have been removed, renamed, or commented out from the default properties files located in JBOSS_HOME/server/@[email protected]/conf/props/

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5e., CAT|II

Plugin: Unix

Control ID: 4c8ce8c526334ae4e0f98e0a0179a3474c06b2385a2cc4cc70972dd1c918af3d