Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Done
Priority: Blocker
Fix Version/s: fuse-7.8-GA
Affects Version/s: fuse-7.8-GA
Component/s: Fuse Standalone, Karaf
Labels:
- res-fix-fk

Blocked:
False
Ready:
False
Fuse Progress Bar:

% %
Prod build version:
build3
Release Note Text:
Undefined
Target Release:

fuse-7.8-GA
Steps to Reproduce:
Hide

move keystore.xml to deploy/ folder

move jbossweb.keystore to etc/ folder

replace org.apache.karaf.management.cfg in etc/ folder (or modify it as specified in description)

start fuse

system:property myProperty myValue

you can use jconsole to check it:

remote connection

service:jmx:rmi://127.0.0.1:44444/jndi/rmi://127.0.0.1:1099/karaf-root

admin/admin

it should be not possible unless you run jconsole with these parameters:
-J-Djavax.net.ssl.trustStore="${PATH_TO_JBOSSWEB_KEYSTORE}" -J-Djavax.net.ssl.trustStorePassword="JbossPassword"
Show
move keystore.xml to deploy/ folder move jbossweb.keystore to etc/ folder replace org.apache.karaf.management.cfg in etc/ folder (or modify it as specified in description) start fuse system:property myProperty myValue you can use jconsole to check it: remote connection service:jmx:rmi://127.0.0.1:44444/jndi/rmi://127.0.0.1:1099/karaf-root admin/admin it should be not possible unless you run jconsole with these parameters: -J-Djavax.net.ssl.trustStore="${PATH_TO_JBOSSWEB_KEYSTORE}" -J-Djavax.net.ssl.trustStorePassword="JbossPassword"

SFDC Cases Counter:
SFDC Cases Links:

Description

It seems like jmx security does not work. In order to access JMX in previous version it has been required to set two JVM options:
javax.net.ssl.trustStore
javax.net.ssl.trustStorePassword

since fuse-7.8 I am able to work with jmx even without specifying these properties.

To easily reproduce this problem I am attaching important files.
file etc/org.apache.karaf.management.cfg modified as follows (you can just append it to your file):

secured = true
secureProtocol = TLSv1
enabledProtocols = TLSv1
keyStore = sample_keystore
keyAlias = jbossalias
trustStore = sample_keystore
keyStoreAvailabilityTimeout = 30000

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending
- Thumbnails
- List
- Download All

jbossweb.keystore
1 kB
2020/09/16 8:36 AM
keystore.xml
0.3 kB
2020/09/16 8:36 AM
org.apache.karaf.management.cfg
3 kB
2020/09/16 8:37 AM
org.apache.karaf.management.server-4.2.9.fuse-780013-redhat-00001.jar
87 kB
2020/09/16 7:06 PM

Activity

People

Assignee:: Freeman(Yue) Fang

Reporter:: Vratislav Hais (Inactive)

Tester:: Vratislav Hais (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2020/09/16 8:42 AM

Updated:: 2021/10/24 5:41 AM

Resolved:: 2020/12/11 10:21 AM