1) AEM JVM init Arguments Required for test environments

-Dcom.sun.management.jmxremote.local.only=false

-Dcom.sun.management.jmxremote

-Dcom.sun.management.jmxremote.port=8080

-Dcom.sun.management.jmxremote.rmi.port=8080

-Djava.rmi.server.hostname=101.102.103.104

-Dcom.sun.management.jmxremote.authenticate=false

-Dcom.sun.management.jmxremote.ssl=false

For prod environments, you need to use authentication, and secure the transport with SSL. Instructions here.

2) Firewall Changes in the OS

For RHEL 7.5, you’d need to run the following (assuming port is 8080)

firewall-cmd --zone=public --add-port=8080/tcp --permanent

firewall-cmd --reload

3) Security Group Changes in the Cloud Provider (assuming port is 8080)

Allow inbound connections from specific IP addresses on port 8080 only