Changing passwords of OS Users

Similar Messages

• How to change password for a user in WLS 7.0 embedded ldap in code?

  I asked the similar question before but don't have an answer yet.
  I need to change password for a user in my Java code. Any help will be
  appreciated.
  Here is my stack trace:
  c:\Test>java -classpath . testEmbeddedLdap
  attribute: uid
  attribute: description
  attribute: objectclass
  attribute: wlsMemberOf
  attribute: sn
  attribute: cn
  javax.naming.NoPermissionException: [LDAP: error code 50 - Insufficient
  Access Rights]; remaining name
  'uid=myRegularUser,ou=people,ou=myrealm,dc=mydomain'
  at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:2872)
  at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2810)
  at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2616)
  at com.sun.jndi.ldap.LdapCtx.c_modifyAttributes(LdapCtx.java:1374)
  at
  com.sun.jndi.toolkit.ctx.ComponentDirContext.p_modifyAttributes(ComponentDir
  Context.java:255)
  at
  com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.modifyAttributes(Partial
  CompositeDirContext.java:172)
  at
  com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.modifyAttributes(Partial
  CompositeDirContext.java:161)
  at
  javax.naming.directory.InitialDirContext.modifyAttributes(InitialDirContext.
  java:146)
  at testEmbeddedLdap.main(testEmbeddedLdap.java:30)
  Here is my testing code:
  <PRE>
  import java.util.*;
  import javax.naming.*;
  import javax.naming.directory.*;
  public class testEmbeddedLdap {
  public static void main(String[] argv) {
  Hashtable env = new Hashtable(11);
  env.put(Context.INITIAL_CONTEXT_FACTORY,
  "com.sun.jndi.ldap.LdapCtxFactory");
  env.put(Context.PROVIDER_URL, "ldap://localhost:7001");
  env.put(Context.SECURITY_AUTHENTICATION, "simple");
  env.put(Context.SECURITY_PRINCIPAL, "uid=myAdministrator, ou=people,
  ou=myrealm, dc=mydomain");
  env.put(Context.SECURITY_CREDENTIALS, "myAdministrator");
  try {
  DirContext ctx = new InitialDirContext(env);
  String
  sUser="uid=myRegularUser,ou=people,ou=myrealm,dc=mydomain";
  String sOldPassword="myRegularUser";
  String sNewPassword="newpassword";
  for (NamingEnumeration ae = ctx.getAttributes(sUser).getAll();
  ae.hasMore(); ) {
  Attribute attr = (Attribute)ae.next();
  System.out.println("attribute: " + attr.getID());
  ModificationItem[] mods = new ModificationItem[2];
  Attribute mod0 = new BasicAttribute("userpassword",
  sOldPassword);
  mods[0] = new ModificationItem(DirContext.REMOVE_ATTRIBUTE,
  mod0);
  Attribute mod1 = new BasicAttribute("userpassword",
  sNewPassword);
  mods[1] = new ModificationItem(DirContext.ADD_ATTRIBUTE, mod1);
  ctx.modifyAttributes(sUser, mods);
  ctx.close();
  } catch (NamingException e) {
  e.printStackTrace();
  </PRE>
  "Neil Smithline" <[email protected]> wrote in message
  news:[email protected]...
  Two things. First, I'm not exactly sure what password you are trying to
  change. The LDAP server's password or a user's password in the LDAP
  server. Second, could you please post a stack trace.
  Thanks - Neil
  K Wong wrote:
  I am using (javax.naming.directory.DirContext.modifyAttributes) to
  change
  password to our development Weblogic 7.0 embedded LDAP.
  I login as the system administrator (a user in the administratorsgroup),
  but always gets the javax.naming.NoPermissionException - InsufficientAccess
  Rights.
  What user should I use? Any help will be appreciated.

  Hai,
  This condition based execution requires - javascript coding.
  In miscelleaneous tools bar, you have an option of SCRIPT_ITEM writer tool, drag the tool into your WAD layout, and select the properties , choose the editor option and paste your coding. that's it.
  Alternate option :
  in your web application design layout , you will fine XHTML coding editor , there you need to write coding and execute the same.
  Hope this will help to you.
  Assign Points if its really useful.
  Cheers !!!
  Bye
  Regards,
  Giri

• Changing passwords of oracle users

  Dear all
  I wander is there any problem if changing password of oracle users SAPOWNER, system,sys . (I guess command for that is brconnect -u system/<password> -f chpass -o <sapowner> -p <password>
  ). What about sys and system. (I hope that after changing passwords the system will be functional)
  Which user is used when "sqlplus / as sysdba"
  thank you in advance

  Hello Jan,
  I wander is there any problem if changing password of oracle users SAPOWNER, system,sys
  Well we already discussed the SAPOWNER here: http://forums.sdn.sap.com/message.jspa?messageID=10814500#10814500
  If you change the password of SYSTEM or SYS there will be no problem at all. These users/password combination is not used in a SAP environment unless you explicitly specify the SYSTEM user and password in some BR*Tools calls like brconnect. If you just use the "/" default approach, the OS authentication mechanism (OSDBA) is used - so no issue there at all.
  @Orkun:
  This is not a user, but a role. So when you connect to the database by using "/as sysdba" you will be able to connect to the system by sysdba role not by a user.
  If you use this apporach you are connected with the user SYS - so you are using a user for sure (and btw. you can only logon with SYS by using SYSDBA role). The only difference between "sqlplus / as sysdba" and "sqlplus SYS as sysdba" is, that you are using the specified OSDBA group with the first approach (so no password is required).
  shell> pwd
  /oracle/<SID>/11202/rdbms/lib
  shell> grep dba config.s
  #  SS_DBA_GRP defines the UNIX group ID for sqldba adminstrative access.
          .rename H.16.ss_dba_grp{TC},"ss_dba_grp"
          .globl  ss_dba_grp{RW}
  T.16.ss_dba_grp:
          .tc     H.16.ss_dba_grp{TC},ss_dba_grp{RW}
          .csect  ss_dba_grp{RW}, 3
  # End   csect   ss_dba_grp{RW}
          .string "dba"
  shell> sqlplus / as sysdba
  SQL> SELECT sys_context('USERENV', 'SESSION_USER') FROM DUAL;
  SYS_CONTEXT('USERENV','SESSION_USER')
  SYS
  shell> sqlplus SYS as SYSDBA
  Enter password:
  SQL> SELECT sys_context('USERENV', 'SESSION_USER') FROM DUAL;
  SYS_CONTEXT('USERENV','SESSION_USER')
  SYS
  Regards
  Stefan

• I am unable to change passwords for any users.  The "change password" is grayed out.

  I am unable to change passwords for any users.  The "change password" is grayed out.  I know there is a way to change them but I am having trouble finding it.
  Message was edited by: dmw1975

  If you're in the Users pane of the server app, and you select Network Users from the drop-down near the top, there's a small padlock icon at the bottom. Is it locked or open? If locked, click it and enter credentials into the authorisation box that opens

• How to change password for sidadm user on HP-UX

  Hello
  How to change password for <sidadm> user on HP-UX

  Hello Jan,
         1.      Log on to the operating system with the <sid>adm user.
         2.      Open a shell.
         3.      Enter the command passwd.
         4.      Enter the old and new passwords
  Rohit

• How to change password for apple user id

  how to change password for apple user id

  If you can't remember your current password then you should be able to get it reset via this page : http://iforgot.apple.com
  If you know your current password then on your phone you can try tapping on your id in Settings > Store and you might be able to change it on your account's screen, or on your computer's iTunes you can log into your account via the Store > View Account menu option and change it on there

• How to change password of sys user connected as sysdba?

  How to change password of sys user connected as sysdba?
  I have connected with user name sys as sysdba in oracle 9i with password oracle.
  I want to change the password . I typed password and pressed entered. It asks me to type old password, then new password and retype the new password. When I press enter it gives error message "ERROR:
  ORA-28008: invalid old password"
  Password unchanged.
  does anyone know about this...? how to change the password..?

  You may be using operating system authentication to log in as sys with sysdba privileges.
  By using password utility, you can change the password of sys user (which is in database) which is "change_on_install" when you create a database.
  You can change this password.

• How to change password of OPERATIONS user in EBS 12.1.3

  hi
  i m using EBS 12.1.3 on RHLE 4
  i want to change password for OPERATIONS user for security reasons.
  i tried FNDPASS utility but it doesn't workout.
  kindly help
  thnx

  L5806633.log LOG as follows
  Application Object Library: Version : 12.0.0
  Copyright (c) 1979, 1999, Oracle Corporation. All rights reserved.
  module:
  Current system time is 15-JUN-2011 13:40:15
  This password is not managed by Oracle Applications so it can not be changed here.
  Concurrent request completed
  Current system time is 15-JUN-2011 13:40:15
  ---------------------------------------------------------------------------

• How to change password for  XELSYSADM user in OIM?

  Hello Gurus and Experts!
  How to change password for XELSYSADM user in OIM?
  Your help is appreciated.

  Follow the undermentioned steps to change the password:
  1) Change the password from oim Design Client as usual.
  2) Open xlconfig.xml present in <XL_HOME>\xellerate\config folder.
  3) This step is optional and should only be used if you have a <XLPassword encrypted> tag in the <Scheduler> section. In the scheduler section, change the encrypted="true" to encrypted="false" and replace existing encrypted password with new clear text password, as shown below:
  <Scheduler>
  <XLUserName>xelsysadm</XLUserName>
  <XLPassword encrypted="false">NEW_PASSWORD</XLPassword>
  </Scheduler>
  4) Restart server.
  Now login with the new password.

• How to Enforce User Change Password First Time User in Release 2?

  Hi...
  We discovered in Oracle Directory Manager(in unix is oidadmin), there actualy
  column to expiry date.(the default is 60).
  We follow this notes in metalink..
  Note:176470.1 Subject: How To Pre-Expire Portal Passwords
  Even though the note is for Portal30(release1), we just wangt to try it in our Release 2...
  Extract from the note
  "3. Set the value of the column LAST_PASSWD_CHANGE_TIME in the table WWSEC_PERSON$ in SSO schema to a value older than the password expiration period (default is 90 days) before the current time (e.g. sysdate - 100) for the appropriate user(s)
  4. For example, if you have created a user called TEST
  you would issue a command such as:
  update wwsec_person$
  set LAST_PASSWD_CHANGE_TIME =sysdate-70
  where USER_NAME='TEST';
  commit; "
  But, when we try to login again in the portal, we can still login...
  So, is the function still exist in Release 2?..
  If not, why Oracle Portal throw that function away?
  Why there still columns in WWSEC_PERSON$ that maybe linked to the password problem?
  can anybody help/explain?
  Thanks....

  Rather than rehash what has already been thoroughly discussed, check this thread. This should answer your question.
  Can a user change his own password after admin has set it
  The english version of Jose Troya's blog: http://obiee101.blogspot.com/2008/08/obiee-change-password.html
  Edited by: LC143 on Aug 27, 2008 1:36 PM

• How to trigger and change password for AD user after form based login

  Hello,
  We are authenticating against Active Directory with Weblogic 10.3 using FORM based security. Everything is working. I need to now change a password for an authenticated user. For example, I have set a user to have their password expire on next logon from the AD side. The user logs in but somehow I need to trap some info from Active Directory (or an LDAP conversation) to figure out if I need to force the user to change password.
  Do I need to start looking at custom code with LDAP Java SDK's or can I use a canned MBean from Weblogic Server.
  I am looking at http://www.mozilla.org/directory/ for LDAP.
  Can I set/reset an AD user's password with an MBean like the following link?
  http://download.oracle.com/docs/cd/E13222_01/wls/docs92/javadocs/index.html?weblogic/management/security/authentication/UserPasswordEditorMBean.html
  If anyone has any experience with this or can point me in the right direction let me know.
  If anyone else is interested please add to the tread and I'll be sure to keep the found solution(s) updated here.
  Thanks...........
  JJ Everett

  Hello JJ
  Please see document ID 403484.1 in http://metalink.oracle.com. This may help to understand what you are aiming to do. Cheers
  -- Nathan

• Using Jackrabbit User Manager programmatically for changing passwords and getting user data.

  I am trying to do a change password request using the Jackrabbit User Manager with the REST URL /system/userManager/user/<username>.changePassword.json.  The problem I am having is that this request requires an oldPwd form param in the request.  The issue is that when I am trying to do this request it is in response to the user selecting "Forgot Password" so our logic has created a random password which we then email to the user so they can use that the next time they want to login.  We need to change that user's password in CRX so they can log in using it next time.  Since they haven't logged in there is no session, NOT the problem.  THE PROBLEMS, I don't know 1. how to use the userManager to get that user's old password, since /system/userManager/user/<username>.json doesn't appear to return the password and 2. if I could get the old password it most certainly will be encoded, some how, so I will need some decoding algorithm to pass it through in order to get the actual password to set as the oldPwd form param to my change password request.  Please let me know if you require any further explanation.  Any assistance would be greatly appreciated.  Thank you, in advance, for your assistance.
  Sincerely,
  Mike Sucena
  [email protected]

  Hi Mike,
  msucena wrote:
  Justin:
  Does your response mean that until version 2.1.2 of Jackrabbit User Manager is released I cannot change the password without knowing the old password?
  No. It means that this feature is not available in version 2.1.0 of the Sling Jackrabbit User Manager bundle. It was added after that release. You have a number of options:
  Build the bundle from source.
  Use one of the SNAPSHOT bundles available from the Apache Snapshots repository.
  Use the release which is being voted upon now (https://repository.apache.org/content/repositories/orgapachesling-175/org/apache/sling/org .apache.sling.jcr.jackrabbit.usermanager/2.2.0/). (Note - we decided to use 2.2.0 as the version number rather than 2.1.2 as originally planned due to the scope of this release).
  Write a different servlet which performs the same actions.
  Meaning that being able to use either the credentials of the "Admin" user or using the credentials of a member of the "UserAdmin" group is not supported in the current released version 2.1.0?
  Correct. It was added after the 2.1.0 release.
    If I currently need the old password is there any Sling REST - Jackrabbit API call I can use in order to get the old password since using /system/userManager/user/<username>.json doesn't appear to return the password?
  -Mike
  The plain text password is not stored. And this should be considered a good thing.
  If you have questions about the development process we follow in Sling (or at Apache as a whole), by all means ask on the Sling users mailing list. It is reasonably well-established and we love to talk about it.

• Change password for a user

  Hello, I just added a new user to my system, when I set the user's password, the two passwords didn't match, the problem is that adduser didn't let me retype my password the, it just completed, and I can't log in with this user I can't change password with the passwd utility, what options do I have?

  This can work:
  1. as root, edit /etc/passwd and remove the line for the messed up user
  2. remove the users dir, from /home
  3. recreate the user

• Can't change password for mobile user on certain client computers

  I have a MacBook Pro that has mobile user accounts. The user accounts are defined in the WGM of my macpro Server. The mobile user account works fine except that after some time I could not change the password on the client computer. I could change it in WGM but then it was not updated on the client. I tried changing the password from the SystemPreferences -> Accounts option as well as from the command line with "passwd". When using the command line passwd it just says "sorry". When using the Accounts option it asks to contact the "system manager".
  I called Apple Support. They suggested recreating the mobile user account on the client. I did that, and everything worked fine, including changing passwords on the client. But, after several weeks, I again cannot change the password on the client. I can change it in WGM fine, but again the client is not updated.
  It seems that the password database on the client gets confused about user password changing privileges after some time.
  To make matters more complicated, everything works fine for another client computer, including changing passwords.
  Any suggestions?

  This problem was related to the case sensitivity of computer names. I had recreated the LDAP binding to the client computer with the computer name in all lower case
  characters. However, when I created the mobile user initially, I had used a mix of upper and lower case characters (the name that shows up upon reverse DNS lookup). Once I re-created the LDAP binding with the original name, everthing worked fine.

• Changing Password of a User

  Hi! I'm Xavi from Barcelona. My problem is:
  I do a transaction associated to a report for change the password of a user. The pasword change but when i do the first login , sap opens a prompt to change the password ,and i would like to change the password and when i do the fisrt login the prompt not open.

  Hi Mark,
  sorry but I think that you are not right stating that using BAPI_USER_CHANGE with setting LOGONDATA-LTIME was considered a "legal feature" (as part of a validation).
  If you take a close look on the function module documentation (in SE37) you'll see that LOGONDATA-LTIME is marked as "For internal use only" (same as LOGONDATA-BCODE and LOGONDATA-CODVN).
  The system enforces now what has been specified in the interface documentation: it checks if invalid input value combinations are used.
  Please notice: the BAPI itself was not changed and no certified interfaces have been invalidated. Because the BAPI interface covers only those features that are not marked as "For internal use only".
  The discontinuity of "bug features" (i.e. features that did work but are not intended to work) always causes complaints. But in this case the enforcement of assured security features (i.e. that an administrator cannot set a non-initial password for a normal user) had a higher priority which did justify that painful cut.
  "Does NetWeaver effectively override the security features of the R/3 platform?"
  Definetly no - take a kind look into SAP note 2467 (which is pretty old) to see that this security feature was present since decades.
  Of course there is also some progress in the security functions. So, not surprisingly NetWeaver offers enhanced security features in comparison with the R/3 platform.
  To a certain degree downwards-compatibility has to be abandoned for the sake of progression. For example: with the next NetWeaver version (NetWeaver 2004 S, based on WebAS 7.00) the ABAP stack made some significant progress regarding password policies. However it was necessary to modify some internal data structures in order to accomplish this task. For those that have implemented own coding operating directly on those data structures (which anyway is not recommended) this will have some negative consequences (old coding will fail to work). However those that only use the APIs are not effected.
  Regarding password synchronization:
  it's not a matter of implementation - the entire approach is subject to failure (by nature). Knowing that, it is our duty to prevent anyone from falling into the trap - e.g. by documenting the constraints (=> SAP note 376856) and by actively preventing unintended usage of provided APIs.
  Preventing customers from falling into traps has nothing to do with dictating requirements / desires. I hope you can agree with me.
  Wolfgang