How to read weblogic user/password within a J2EE app ?

Similar Messages

• How Can I change all User Passwords Within a Directory Instance

  Hi Experts,
  I've been asked to refresh an old directory instance with some production data.  Easy enough I thought, however, the user has requested that all user passwords within the old directory instance are preserved.  Is that at all possible?  My chain of thought was that I can extract user passwords from the old instance into a file: -
  # ldapsearch -D cn="Directory Manager" -w xxxxxxxx -b o=xxxxxxx objectclass=* userpassword > <name of file>
  And then then use ldapmodify (or alike) to re-import the user passwords once I've refresh the old instance with the production data.  However, to my knowledge, in order to modify a particular entry via a file, i'd need the following format: -
  dn: gci=-1,ou=people,o=xxxxxxxx
  changetype: modify
  replace: userpassword
  userpassword: xxxxxxxxxxxxxxxx
  The only information I have in the file I created using the ldapsearch command above is as follows: -
  dn: gci=-1,ou=people,o=xxxxxxxx
  userpassword: xxxxxxxxxxxxxxxx
  I don't want to have to edit the file and add the relevant missing entries accordingly as the generated file has somewhere in the region of 150 thousand entries.
  Am I approaching this the correct way?  Is there any other mean of achieving my requirement.
  Thanks in Advance.

  Hi,
  It does not seem a big deal to add the missing lines to your output file.
  For instance, the following awk command should do the trick
  cat search.out
  dn: gci=-1,ou=people,o=xxxxxxxx
  userpassword: xxxxxxxxxxxxxxxx
  cat search.out | awk '/userpassword/ {print "changetype: modify} ; print "replace: userpassword"; }  {print $0}
  dn: gci=-1,ou=people,o=xxxxxxxx
  changetype: modify
  replace: userpassword
  userpassword: xxxxxxxxxxxxxxxx
  Then you can use ldapmodify to apply your changes
  -Sylvain

• Change Users Password within ADF Application

  We are trying to update a users password within a webcenter based ADF app but are struggling as the operations on the UserProfile seem to be locked down for read -only access
  oracle.security.idm.UserProfile userProfile = null;
  userProfile = WCSecurityUtility.getUserFromUserName(userName).getUserProfile();
  userProfile.setPassword(oldPassword.toCharArray(), newPassword.toCharArray());
  Gives the following error:
  oracle.security.idm.OperationNotSupportedException: WebCenterUser supports only read operations
  at oracle.webcenter.framework.security.idm.WebCenterUserImpl.setPassword(WebCenterUserImpl.java:101)
  Does this mean we have to use LDAP API's to establish a connection and set the password that way? I dont really want to have to store the connection details within the ADF app for the the LDAP.
  Regards
  Jason

  I think this is using that exact method:
  user.getUserProfile().setPassword("old".toCharArray(), "new".toCharArray());
  its this that falls over.
  I have a feeling that its mandatory to use this method over SSL

• Sychronisation AD - OID: Is it possible to read the user password from AD?

  Hi.
  We are using the Oracle Internet Directory shipped with the Oracle 9i Database Rel. 2 (9.2.0.1).
  I try to synchronise the user accounts from AD to OID using JAVA JNDI. I'm able to read all necessary user information except the user password (MD5 value). Even if I connect to the AD using SSL, it's not possible to read the attribute userPassword.
  Is anybody out there who got this work or knows a way (may also be by the use of another programming language or tool) to get the user password out of AD? Is this possible? How does the Oracle Integration Agents accomplish this?
  Thanks in advance.
  Hermann S.

  Hermann,
  I am working with this as well, though from AS10g, not RDBMS. According to the OID Administrator Guide chapter 43, page 43-52:
  <snip>
  Synchronizing passwords from Microsoft Active Directory to Oracle Internet Directory is not possible in the Oracle Application Server 10g release because passwords in Microsoft Active Directory are not accessible by LDAP clients. However, if a deployment requires passwords to be available in Oracle Internet Directory, then the following two methods are recommended:
  Build a custom plug-in for Microsoft Active Directory that captures a password change and synchronizes it with Oracle Internet Directory
  Manage Active Directory passwords from the Oracle environment. This enables passwords to be available in both Oracle Internet Directory and Microsoft Active Directory because the Active Directory connector can synchronize passwords from Oracle Internet Directory to Microsoft Active Directory.
  </snip>
  As10g can however look up the password in AD using the "Active Directory External Authentication Plug-In". This is documented in the same chapter.
  Hope this helps,
  Jens

• How to change Analyzer user password with Administration API?

  Hi,<BR>I would like to change Analyzer user password with Administration API. Can someone post some sample commands to do the task?<BR><BR>I would just like to write an application to change end user's Analyzer password.<BR>As I see I would need to do the following:<BR>1. login with admin userid/password<BR>2. execute some method to change password for required userid. I think the input parameter should be userid (of the user I would like to change password) and new password (the new password for the user).<BR>3. logout<BR><BR>Can someone post some sample code (commands to execute)?<BR><BR>Thanks,<BR>grofaty<BR><BR>My system:<BR>Analyzer Server 7.0.1.<BR>Essbase server 7.1<BR>Windows XP SP2<BR>

  <blockquote>quote:<br><hr><i>Originally posted by: <b>knightrich</b></i><BR>Hello Mr. Jordan.<BR><BR>I would like to exchange some thoughts about "housekeeping" Analyzer reports in preparation for migration from Analyzer 7.0.0.0.01472 to 9.x:<BR><BR>...<BR><BR>Did you solved such a problem or do you have an idea if it could be solved with the Admin API methods?<BR> ...<BR>Migration from 7.00 to 9.x: As we heard last week the "Migration Wizard for Reports" in 9.3 should be able to migrate reports. Do you have experience or more detailed information about that Wizard?<BR><BR>Many thanks in advance<BR><BR>knigthrich<hr></blockquote><BR><BR>knighrich, <BR>I'd like to be more help, but I have no experience with System 9. I did substantial cleanup when we migrated from Analyzer 6 to Analyzer 7.1, and even more cleanup when moving up to 7.2, but our installation is smaller in scale than yours and we didn't need to automate report cleanup.<BR><BR>You might be able to get the ownership information you need through the back door, doing a direct query on the database, but simpler might be an export users, at least from 7.0. (This facility probably doesn't exist in system 9; it was dropped in 7.2 in favor of an undocumented API) The export file is an xml file that could easily be parsed to identify reports that have the administrator as user and then a second pass to delete those with otuer ownership as well. As previously suggested, you might be able to get this by a well crafted SQL query against the repository.<BR><BR>Procedurally, we have both public reports that have the blessing of management and are widely available, owned by a "public owner", and private reports developed by indivdual users and shared or not. Our team maintains the public reports, but not the private reports. We may be asked to make a previously private report public and take over maintenance of it. <BR><BR>I hope that you can find a solution that meets your needs. Certainly a call to customer support to identify a poorly documented feature would be in order.<BR>

• How to read Extended user property in oracle BPM?

  Hi,
  I have tried using the XPATH expression in Data Association to read an Extended User Property defined in Oracle BPM Workspace. Actually I'm using Active Directory for authentication, and as there is limitations for modifying existing AD to accommodate custom fields required for BPM Processes, I created an Extended User  Property called Department Code and mapped it for all users who should be participating in the process. Now I want to read this Department Code and display in ADF Form (Human Task Form).
  I tried something like this using XPATH Expr. in Data Association for Human Task :
  ids:getUserProperty(bpmn:getProcessInstanceAttribute('creator'), 'departmentCode')
  But it appears that using Identity Function exposed for Xpath we can only read some pre-defined set of properties associated with internal LDAP for weblogic. So please suggest what is the approach one should follow in order to read Extended User Properties defined in Oracle BPM Workspace.
  I'm using Oracle SOA 12.1.3 and JDeveloper 11.1.17 deployed on Windows 7
  Regards,
  Shoaib R Khan

  Hi,
  I have tried using the XPATH expression in Data Association to read an Extended User Property defined in Oracle BPM Workspace. Actually I'm using Active Directory for authentication, and as there is limitations for modifying existing AD to accommodate custom fields required for BPM Processes, I created an Extended User  Property called Department Code and mapped it for all users who should be participating in the process. Now I want to read this Department Code and display in ADF Form (Human Task Form).
  I tried something like this using XPATH Expr. in Data Association for Human Task :
  ids:getUserProperty(bpmn:getProcessInstanceAttribute('creator'), 'departmentCode')
  But it appears that using Identity Function exposed for Xpath we can only read some pre-defined set of properties associated with internal LDAP for weblogic. So please suggest what is the approach one should follow in order to read Extended User Properties defined in Oracle BPM Workspace.
  I'm using Oracle SOA 12.1.3 and JDeveloper 11.1.17 deployed on Windows 7
  Regards,
  Shoaib R Khan

• How to get the user password?

  I want to get the user password.
  How to do ?
  Thank you.

  Hi Zhang,
  You cannot see the password of an Authenticated User. You can retrieve the Password of the User in encrypted from using JNDI - by connecting to the OID & getting it. You can even change the password of the user with the necessary permissions - but, you cannot get the unencrpted password.
  Regards,
  Sandeep

• How to read weblogic  configurations in WL6.1 (v.s. from WL5.1)

  We used to read weblogic environment parameters like this in
  WL5.1, in particular, we need to find the file path to the
  weblogic system home directory with WL6.1
  Here is the old WL5.1 code:
  T3ServicesDef services = T3Services.getT3Services();
  directory=services.config().getProperty("weblogic.system.home");
  port=services.config().getProperty"weblogic.system.listenPort");
  In WL6.1
  T3ServicesDef.config() is no longer available, what could we use instead ?
  Thanks for any suggestions !
  Yin Liang

  You can use JMX
  Please find a sample here
  List Users and Groups in Weblogic using JMX | Middleware wonders!!

• HT4798 How to reset my user password without the apple id option?

  I forgot my user password to login, and i did not select the option of allowing the apple ID to reset the user password, before forgetting my user password.
  What can I do???

  Reset the password of specific users
  An administrator can reset the passwords of other users using  this technique.
  Choose Apple menu > System Preferences, click Users & Groups, click the lock to unlock it and provide an administrator name and password, select a user, and then click Reset Password.

• How to read employee user's Org unit name,Org unit add and user position

  Hi ,
  Is there any Function module or a class-method to read a user assinged Orgunit name ,Org unit address and the user position at that org unit.
  i have a given out a search on sdn but could not get the answer.
  Thanks for your time
  Seema

  Eswar,
  Thanks for your fast reply.
  I found this table before.But i do not have idea of passing what paramters to get my specific org and position of an employee data from this table.
  Let say i know my BP number for employee and Username of him.
  i could find out his Obj id using EMP user name.
  When i look into table HRP1001 using above Obj id, i could see there are 3 entries exist in table , among one of them is talking about position  as
  Sclas = S  and SOBID = 50020832.
  So how would i know by having this number , is it dealing with position and what kind of position it is,,,whether a manager or something else?
  Hope you got me.
  Basically am aslo looking for a FM where in i cold porvide aBP number or EMP username, where inturn i ll get a Emp position his org details.
  Seema
  Edited by: seema rajjot on Apr 9, 2010 8:40 PM

• How to set database user password to never expire

  Hello all,
  I have a linux server with Oracle 11g installed which is used primarily for testing by a few developers and QA folks. I want to set the DB user password to never expire. I have run the following (which works on a windows machine) but the password still states that it will expire in 7 days. Is there something else I can do to 'force' the pw to infinity? I've tried stopping shutting down the DB, stopping / restarting listener...
  ALTER PROFILE DEFAULT LIMIT PASSWORD_LIFE_TIME UNLIMITED;
  select * from dba_profiles where profile = 'DEFAULT' and resource_name LIKE 'PASSWORD_LIFE_TIME';
  "PROFILE"     "RESOURCE_NAME"     "RESOURCE_TYPE"     "LIMIT"
  "DEFAULT"     "PASSWORD_LIFE_TIME"     "PASSWORD"     "UNLIMITED"
  select profile from dba_users where username='TEST';
  "PROFILE"
  "DEFAULT"
  select username, account_status, to_char(expiry_date, 'DD-MM-YYYY') EXP_DATE from dba_users where username = 'TEST';
  "USERNAME"     "ACCOUNT_STATUS"     "EXP_DATE"
  "TEST"     "OPEN"     ""
  Help appreciated.

  With 11g, Password_life_time in DEFAULT profile is set to 180days.
  Default profile values in 11g.
  SQL> SELECT * FROM dba_profiles WHERE profile = 'DEFAULT' AND resource_type = 'PASSWORD';
  PROFILE                        RESOURCE_NAME                    RESOURCE
  LIMIT
  DEFAULT                        FAILED_LOGIN_ATTEMPTS            PASSWORD
  10
  DEFAULT                        PASSWORD_LIFE_TIME               PASSWORD
  180
  DEFAULT                        PASSWORD_REUSE_TIME              PASSWORD
  UNLIMITED
  PROFILE                        RESOURCE_NAME                    RESOURCE
  LIMIT
  DEFAULT                        PASSWORD_REUSE_MAX               PASSWORD
  UNLIMITED
  DEFAULT                        PASSWORD_VERIFY_FUNCTION         PASSWORD
  NULL
  DEFAULT                        PASSWORD_LOCK_TIME               PASSWORD
  1
  PROFILE                        RESOURCE_NAME                    RESOURCE
  LIMIT
  DEFAULT                        PASSWORD_GRACE_TIME              PASSWORD
  7
  7 rows selected.Change the password_grace_time to unlimited.
  HTH
  -Anantha

• How to run a background process in a J2EE App ?

  Hi guys,
  Here is the requirement which totally stumped me.
  " The web app should have a feature like a background process or something like cron jobs.. which keeps on running in the background and at a particular time each day calls a method". User intervention is not an option.
  Now had this been a stand alone app .. I could have done this using Threads.. but i cant possibly use threads in a J2EE app. Any pointers.. how I can go about realizing this
  Thanks for your replies.
  Cheers!

  You could take the approach that SoulTech mentioned and spawn a new thread from the Servlet's init method. To have the servlet invoke this method with no intervention, you would need to set the following parameter in your servlet definition in your web.xml:
  <servlet>
    <servlet-name>MyStartupServlet</servlet-name>
    <servlet-class>com.my.company.MyStartupServlet</servlet-class>
    *<load-on-startup>1</load-on-startup>*
  </servlet>When you deploy your application, the servlet will be loaded, and its init method will be called.
  If your application is running in a servlet container, I believe you are allowed (by the specification) to spawn your own threads, but you should do so carefully. Since you're writing a scheduler and not some kind of worker threads that are messing with your database, I think you should be okay. Still, just to keep it clean you should add any clean-up logic you may need to your servlet's destroy method. I know that in an EJB container, spawning your own threads can definitely be a problem and the container makes no guarantees that they will function correctly. The J2SE Timer class could be used if you're not using EJB, but the Timer class doesn't have support for J2EE - that's at least part of what led to the introduction of the timer beans in J2EE 1.4. If you're already using EJB, especially EJB 3.0, then the timer service provides a convenient built-in mechanism to do exactly what you want.
  There are always multiple ways to solve any problem...
  Edited by: proflux on May 15, 2008 1:04 PM

• How to read system user and password to login to a application

  Hello Experts,
  i need to open a application with out asking for the user name and password. the application when opened should take system user name ans password can u tell me how can i do this in webDynpro java. or is there any alternate method to do this

  hello,
  This can be achived in following manner,
  1) Ask ur basis peron to creat ur id on the server (for ex. if u are using a dev server ask him to creat a user their)
  2)Now Logon to your user id n system password
  it will take you to the portal and the roles assigned to you by basis.
  Result:
  u will be able to see a portal logged in by your name and rols assigned to u
  With Regards,
  Prajakta

• How to reset the user password in Portal (SSO Users).

  Hi,
  How to let the Portal users (SSO Users) reset their passwords by themselves..?
  - J

  Forgot one another thing,
  Assume that the users have set their required challenge questions (hints).
  How does it work when the user forget his/her password. Is it like something below.
  - click the "Forgot Password" link.
  - Enter your id
  - Answer your Hints.
  Will the new password be emailed to you or you will be allowed access the system and then the user has to choose a new password.
  Could you please shed light on this.
  J.

• OIM Startup Error After weblogic user password change

  Hello,
  I'm running OIM 10g (BP15) on WLS server in clustered mode. Everything was running smoothly until -
  I changed the weblogic password after going to
  security realms >myrealm >Users and Groups >weblogic > Passwords:
  I was able to login to WLS using new cred (weblogic/newpasswd). But OIM server startup started giving login errors as below.
  I reverted back by change by setting the old password again... but the error continued....
  Please suggest. I already tried putting the correct passwords in the boot.properties. But it didn't help.
  Please note.. i'm successfully able to login to WLS console.. only OIM server startup is having below errors..
  OIM_SERVER1.log is opened. All server side log events will be written to this file.>
  <Jan 26, 2012 6:44:31 PM PST> <Notice> <Security> <BEA-090082> <Security initializing using security realm myrealm.>
  ERROR,26 Jan 2012 18:44:53,194,[XELLERATE.ACCOUNTMANAGEMENT],Class/Method: Authenticate/connect User with ID: WEBLOGIC was not found in Xellerate.
  ERROR,26 Jan 2012 18:44:53,202,[XELLERATE.ACCOUNTMANAGEMENT],Class/Method: XellerateLoginModuleImpl/login encounter some problems:
  com.thortech.xl.security.tcLoginException:
  at com.thortech.xl.security.tcLoginExceptionUtil.createException(tcLoginExceptionUtil.java:96)
  at com.thortech.xl.security.tcLoginExceptionUtil.createException(tcLoginExceptionUtil.java:53)
  at com.thortech.xl.security.Authenticate.connect(Authenticate.java:152)
  at com.thortech.xl.security.Authenticate.connect(Authenticate.java:71)
  at com.thortech.xl.security.wl.XellerateLoginModuleImpl.login(XellerateLoginModuleImpl.java:159)
  at com.bea.common.security.internal.service.LoginModuleWrapper$1.run(LoginModuleWrapper.java:110)
  at com.bea.common.security.internal.service.LoginModuleWrapper.login(LoginModuleWrapper.java:106)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at javax.security.auth.login.LoginContext.invoke(LoginContext.java:769)
  at javax.security.auth.login.LoginContext.access$000(LoginContext.java:186)
  at javax.security.auth.login.LoginContext$4.run(LoginContext.java:683)
  at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:680)
  at javax.security.auth.login.LoginContext.login(LoginContext.java:579)
  at com.bea.common.security.internal.service.JAASLoginServiceImpl.login(JAASLoginServiceImpl.java:113)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at com.bea.common.security.internal.utils.Delegator$ProxyInvocationHandler.invoke(Delegator.java:57)
  at $Proxy22.login(Unknown Source)
  at weblogic.security.service.internal.WLSJAASLoginServiceImpl$ServiceImpl.login(WLSJAASLoginServiceImpl.java:89)
  at com.bea.common.security.internal.service.JAASAuthenticationServiceImpl.authenticate(JAASAuthenticationServiceImpl.java:82)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at com.bea.common.security.internal.utils.Delegator$ProxyInvocationHandler.invoke(Delegator.java:57)
  at $Proxy40.authenticate(Unknown Source)
  at weblogic.security.service.WLSJAASAuthenticationServiceWrapper.authenticate(WLSJAASAuthenticationServiceWrapper.java:40)
  at weblogic.security.service.PrincipalAuthenticator.authenticate(PrincipalAuthenticator.java:348)
  at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.doBootAuthorization(CommonSecurityServiceManagerDelegateImpl.java:929)
  at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1050)
  at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:873)
  at weblogic.security.SecurityService.start(SecurityService.java:141)
  at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
  at weblogic.work.ExecuteThread.run(ExecuteThread.java:178)
  <Jan 26, 2012 6:44:53 PM PST> <Critical> <Security> <BEA-090402> <Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.>
  <Jan 26, 2012 6:44:53 PM PST> <Critical> <WebLogicServer> <BEA-000386> <Server subsystem failed. Reason: weblogic.security.SecurityInitializationException: Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.
  weblogic.security.SecurityInitializationException: Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.
  at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.doBootAuthorization(CommonSecurityServiceManagerDelegateImpl.java:959)
  at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1050)
  at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:873)
  at weblogic.security.SecurityService.start(SecurityService.java:141)
  at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
  Truncated. see log file for complete stacktrace
  Caused By: javax.security.auth.login.FailedLoginException: [Security:090304]Authentication Failed: User weblogic javax.security.auth.login.FailedLoginException: [Security:090302]Authentication Failed: User weblogic denied
  at weblogic.security.providers.authentication.LDAPAtnLoginModuleImpl.login(LDAPAtnLoginModuleImpl.java:261)
  at com.bea.common.security.internal.service.LoginModuleWrapper$1.run(LoginModuleWrapper.java:110)
  at com.bea.common.security.internal.service.LoginModuleWrapper.login(LoginModuleWrapper.java:106)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  Truncated. see log file for complete stacktrace
  >
  <Jan 26, 2012 6:44:53 PM PST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to FAILED>
  <Jan 26, 2012 6:44:53 PM PST> <Error> <WebLogicServer> <BEA-000383> <A critical service failed. The server will shut itself down>
  <Jan 26, 2012 6:44:53 PM PST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to FORCE_SHUTTING_DOWN>
  Thanks,

  Got the solution :
  1.     Log on to the WebLogic Server Administration Console.
  2.     Click the domain name for the Managed Server.
  3.     Click View Domain-wide security settings.
  4.     Click the Embedded LDAP tab.
  5.     Select the Refresh replica at startup option, and then click Apply.