(Also true in Tomcat 7) The JmxRemoteLifecycleListener does not support JAAS based authentication. That is, when authentication is required, it only supports file based authentication.
Enhancement requests with proposed patches tend to get addressed more quickly than those without.
Created attachment 26934 [details] Diff from trunk - changes JmxRemoteLifecycleListener only
(In reply to comment #1) > Enhancement requests with proposed patches tend to get addressed more quickly > than those without. Apologies, didn't have time to add my patch before your reply ;-)
Properties to verify this is working: -Dcom.sun.management.jmxremote.authenticate=true -Dcom.sun.management.jmxremote.ssl=false -Dcom.sun.management.jmxremote.login.config=TomcatJaas (the module name) -Djava.security.auth.login.config=/path/to/jaas.config -Dcom.sun.management.jmxremote.access.file=/path/to/jmxremote.access
Fixed in 6.0.x and will be included in 6.0.33 onwards.