Skip to main content

GlassFishv3.1.2 login console with admin error -----help me

7 replies [Last post]
arthas777
Offline
Joined: 2012-09-05
Points: 0

I put the glassfish in my linux server,start the server ok.
But,when I try to login console with admin,the console's login page alert me:"Secure Admin must be enabled to access the DAS remotely."

thanks very much.

Reply viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.
arthas777
Offline
Joined: 2012-09-05
Points: 0

I had resole the problem.
"asadmin --host 192.168.1.2 --port 4848 enable-secure-admi"
must restart the glassfish server.

I think , this is not a safe method.

tjquinn
Offline
Joined: 2005-03-30
Points: 0

Why do you think this is not a safe method?

Enabling secure admin changes some network listener configuration. A restart is required for those changes to become active.

arthas777
Offline
Joined: 2012-09-05
Points: 0

Hello,
The browser says : " There is a problem with this website's security certificate. ".

And I also can continue to my website (not recommended).

So,I think this is not a safe method!

tjquinn
Offline
Joined: 2005-03-30
Points: 0

You have changed what you are saying is not a safe method. First you said restarting the server was not a safe method. That is what I asked about earlier.

Now you are talking about the self-signed certificate.

As documented, GlassFish uses a self-signed certificate that is generated when you create a GlassFish domain (or when you use the pre-defined domain that is part of the installation when you unzip the distribution). Browsers notify the user if a site uses a self-signed certificate because the cert is not issued by a trusted cert authority.

To avoid these warnings you can obtain your own certificate from a trusted authority and have GlassFish use it instead of the self-signed one.

arthas777
Offline
Joined: 2012-09-05
Points: 0

Thank you very much!
My english is poor.

Kevin Schmidt

This method is perfectly safe. As was just described, by default your
domain is configured to use a self-signed certificate. Because it is
self-signed, your browser does not trust it by default (it wasn't signed
by a CA it trusts) and so you get the browser prompting you. You can
safely proceed if you trust the self-signed certificate (which presumably
you do). If you want to avoid getting prompted, you can import the
certificate into your browser's trust store so that it now trusts the
signer of the certificate.

And like was just described, you can get a certificate from a trusted CA
and configure GlassFish to use it instead, and then you also won't be
prompted when opening the admin console.

NextGate
Kevin Schmidt ■ Director, Product Management & Marketing
p: +1-626-400-6008 ■ m: +1-425-390-4786 ■ nextgate.com

Registry solutions for efficient health information exchange
IMPORTANT WARNING: This email (and any attachments) is only intended for
the use of the person or entity to which it is addressed, and may contain
information that is privileged and confidential. You, the recipient, are
obligated to maintain it in a safe, secure and confidential manner.
Unauthorized re-disclosure or failure to maintain confidentiality may
subject you to federal and state penalties. If you are not the intended
recipient, please immediately notify us by return email, and delete this
message from your computer.

On 9/7/12 7:23 AM, "forums@java.net" wrote:

>You have changed what you are saying is not a safe method. First you said
>restarting the server was not a safe method. That is what I asked about
>earlier. Now you are talking about the self-signed certificate. As
>documented, GlassFish uses a self-signed certificate that is generated
>when
>you create a GlassFish domain (or when you use the pre-defined domain
>that is
>part of the installation when you unzip the distribution). Browsers notify
>the user if a site uses a self-signed certificate because the cert is not
>issued by a trusted cert authority. To avoid these warnings you can obtain
>your own certificate from a trusted authority and have GlassFish use it
>instead of the self-signed one.
>
>--
>
>[Message sent by forum member 'tjquinn']
>
>View Post: http://forums.java.net/node/889882
>
>

arthas777
Offline
Joined: 2012-09-05
Points: 0

Thank you very much!