Configuring RBAC
Role-Based Access Control (RBAC) is a mechanism for configuring a set of permissions for EAP management users. It allows multiple users to share responsibility for managing EAP servers without requiring unrestricted access to them. By providing separation of duties for management users, JBoss EAP makes it easy for an organization to divide responsibility between administrators or groups without granting unnecessary privileges. This ensures the maximum possible level of security of your servers while still providing flexibility for management, configuration, and deployment.
Out of the box, the following roles are predefined in EAP 7, covering most common use cases:
Role |
Description |
|
This role has the fewest permissions and can only read the current configuration and state of the server. Typically used for end users that need to watch the server metrics and availability. |
|
This role extends the Monitor permission, enabling the deployment of application... |