Secure Kaazing WebSocket Gateway Monitoring
Kaazing WebSocket Gateway monitoring is secured by an explicitly specified security realm name. The realm-name element refers to one of the named realms inside the service element.
Before You Begin
This procedure is part of Checklist: Monitoring Kaazing WebSocket Gateway:
- Introduction to Monitoring Kaazing WebSocket Gateway
- Secure Kaazing WebSocket Gateway Monitoring
- Monitor a Gateway or Gateway cluster
- Monitor with Command Center (Recommended)
- Monitor with JMX
- Checklist: Troubleshoot Kaazing WebSocket Gateway
To Secure Management for the Gateway
- Open the Gateway configuration file (for example, GATEWAY_HOME/conf/gateway-config.xml) in a text editor.
- Add a realm and a security authorization constraint as shown in the following example for the SNMP Management service:
<service> <name>SNMP Management</name> <description>SNMP Management Service</description> <accept>ws://build-macmini.kaazing.test:${gateway.base.port}/snmp</accept> <type>management.snmp</type> <!-- secure monitoring using a security realm --> <realm-name>commandcenter</realm-name> <!-- configure the authorized user roles --> <authorization-constraint> <require-role>ADMINISTRATOR</require-role> </authorization-constraint> <cross-site-constraint> <allow-origin>*</allow-origin> </cross-site-constraint> </service>
See Also
- The
management.snmp
andmanagement.jmx
service types in the Service Reference documentation - About Security with Kaazing WebSocket Gateway