Tomcat unusable with DSM 6 - Permission denied in tomcat-users.xml

The discussion lounge for third-party packages.
Forum rules
We've moved! Head over to Synology Community ( to meet up with our team and other Synology enthusiasts!
I'm New!
I'm New!
Posts: 1
Joined: Tue Jul 03, 2018 12:42 am

Tomcat unusable with DSM 6 - Permission denied in tomcat-users.xml

Unread post by planpc » Thu Jul 12, 2018 1:18 pm


Hello, tried to find any info in this forum before write this for help, the support from synology hasn´t provide me any help, since Tomcat is a third party module, and they don´t provide support for this...

My problem is, that after install Tomcat (tried with versions 6 and 7) from packet manager, is impossible to access Tomcat administration, since the conf file where users passwords and roles are stored, is accesible only for read, but can´t be modified, or I don´t know how exactly do it. . Tried to modify it through WIN SCP, getting Permission denied.
Also tried with putty, but after enter command sudo -i, enter admin password ok, but don´t know what comes after...

This Tomcat users conf file, has no users created on it, as this file is also protected and cant be modified, Tomcat has no sense in the packet manager, dont you think?

The conf file is here: /volume1/@appstore/Tomcat/src/conf/tomcat-users.xml

Content of the original file:

Code: Select all

<?xml version='1.0' encoding='utf-8'?>
  Licensed to the Apache Software Foundation (ASF) under one or more
  contributor license agreements.  See the NOTICE file distributed with
  this work for additional information regarding copyright ownership.
  The ASF licenses this file to You under the Apache License, Version 2.0
  (the "License"); you may not use this file except in compliance with
  the License.  You may obtain a copy of the License at

  Unless required by applicable law or agreed to in writing, software
  distributed under the License is distributed on an "AS IS" BASIS,
  See the License for the specific language governing permissions and
  limitations under the License.
  NOTE:  By default, no user is included in the "manager-gui" role required
  to operate the "/manager/html" web application.  If you wish to use this app,
  you must define such a user - the username and password are arbitrary. It is
  strongly recommended that you do NOT use one of the users in the commented out
  section below since they are intended for use with the examples web
  NOTE:  The sample user and role entries below are intended for use with the
  examples web application. They are wrapped in a comment and thus are ignored
  when reading this file. If you wish to configure these users for use with the
  examples web application, do not forget to remove the <!.. ..> that surrounds
  them. You will also need to set the passwords to something appropriate.
  <role rolename="tomcat"/>
  <role rolename="role1"/> 
  <user username="tomcat" password="<must-be-changed>" roles="tomcat"/>
  <user username="both" password="<must-be-changed>" roles="tomcat,role1"/>
  <user username="role1" password="<must-be-changed>" roles="role1"/>
I need to edit to gain access to this file, adding something like this:

Code: Select all

<role rolename="admin"/>
<role rolename="manager"/>
<role rolename="manager-gui"/>
<role rolename="manager-script"/>
<role rolename="manager-jmx"/>
<role rolename="manager-status"/>
<user username="ADMIN" password="ADMIN123" roles="manager-gui,manager-script,manager-jmx,manager-status,manager,admin"/>

So can access tomcat from http://NAS:7070/manager/html

Any help is appreciated.


Return to “Third-party Packages”