Return-Path: Delivered-To: apmail-geronimo-user-archive@www.apache.org Received: (qmail 74176 invoked from network); 9 Jan 2006 16:29:28 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 9 Jan 2006 16:29:28 -0000 Received: (qmail 19697 invoked by uid 500); 9 Jan 2006 16:29:18 -0000 Delivered-To: apmail-geronimo-user-archive@geronimo.apache.org Received: (qmail 19656 invoked by uid 500); 9 Jan 2006 16:29:18 -0000 Mailing-List: contact user-help@geronimo.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: user@geronimo.apache.org List-Id: Delivered-To: mailing list user@geronimo.apache.org Received: (qmail 19621 invoked by uid 99); 9 Jan 2006 16:29:18 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 09 Jan 2006 08:29:18 -0800 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (asf.osuosl.org: domain of ammulder@gmail.com designates 64.233.162.200 as permitted sender) Received: from [64.233.162.200] (HELO zproxy.gmail.com) (64.233.162.200) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 09 Jan 2006 08:29:17 -0800 Received: by zproxy.gmail.com with SMTP id 9so170715nzo for ; Mon, 09 Jan 2006 08:28:57 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:sender:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=VlAKlrAaImaAD7SBOAiBLTJQ142RNZUvC+LMyYIztzbKb25oo4d/2sM85w4TMw/K/mI0JcNSeZ4e+cKkHv71awE5p+6GoJWsiQUD5JoBuclFs+RqAQN8DKvsIY2x8OgV0OSo/Prk1Ju5JE4rh3Qy+vcYJ4Fe9OShZse5VvuEwy4= Received: by 10.36.224.36 with SMTP id w36mr12846484nzg; Mon, 09 Jan 2006 08:28:55 -0800 (PST) Received: by 10.37.13.69 with HTTP; Mon, 9 Jan 2006 08:28:54 -0800 (PST) Message-ID: <74e15baa0601090828n2c1495f6gb5d102f16588654a@mail.gmail.com> Date: Mon, 9 Jan 2006 11:28:54 -0500 From: Aaron Mulder Sender: ammulder@gmail.com To: user@geronimo.apache.org Subject: Re: Web Console authentication realm In-Reply-To: <20060109161011.90544.qmail@web54305.mail.yahoo.com> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline References: <20060108184524.74477.qmail@web54302.mail.yahoo.com> <20060109161011.90544.qmail@web54305.mail.yahoo.com> X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N Do you mean, when the deploy tool prompts you for a username and password to connect to the server, what security realm is that? It's called geronimo-properties-realm and it reads the users and groups from var/security/users.properties and var/security/groups.properties. I think you could change this to use a different realm like this: 0) Deploy your LDAP realm 1) add an entry to config.xml for the JMXService GBean in the geronimo/j2ee-security/1.0/car configuration 2) For that GBean, set the property applicationConfigName to MyJMX or something other than the default value of "JMX" 3) Add a new GBean to that Geronimo configuration mapping the MyJMX JAAS configuration to your LDAP realm name like this: MyJMX ldap-realm-name JaasLoginService That last step is the trick -- I'm not 100% sure how to add GBeans to existing configurations by hand, but I believe it can be done in config.xml (though, looking at the schema, I don't see how). Dain or David J, any insight? Thanks, Aaron On 1/9/06, Cristian Roldan wrote: > Any idea ? > > > Cristian Roldan escribi=F3: > > > Hi All, > > I could change the Web Console's authentication realm to use a ldap > realm, i'm using the Geronimo's ldap (1389) , every thing works ok. But I > saw that de deploy.bat script is using another realm, could someone tell = me > which security realm is using the deploy.bat script and the configuration > associated with it ?