1.20 - Remove default roles from production servers - 'console-mgr default role != JBossAdmin|HttpInvoker|friend|guest'
Information
Remove, rename, or comment out the default role definitions in the default <application-policy> elements
Solution
Ensure the default role assignments have been removed, renamed, or commented out from the default properties files located in JBOSS_HOME/server/[PROFILE ]/conf/props/