Describes the authentication and authorization functionality of the LMF

Introduction

The LMF implements its own authentication and authorization mechanism. There are three pre-defined profiles, "simple", "standard", and "restricted": - "simple" allows read access from everywhere and write access only from localhost or other local interfaces - "standard" allows read access from everywhere and write access only for authenticated users of the "manager" role - "restricted" allows access only for authenticated users

By default, the LMF will use the "simple" profile, allowing only access from localhost. If you want to change the profile, you can set the configuration property "security.profile" to "standard", e.g. via the configuration interface in "Core Services" or "Security". If your instance is running on a remote server, you can e.g. log in using SSH and run the following command:

curl -X POST -H "Content-Type: application/json" -d '["standard"]' http://<MACHINE_NAME>:<PORT>/LMF/config/data/security.profile

Afterwards, you can log in with the default admin user and password ("admin" and "pass123").