Missing weblogic.security.spi. classes

Similar Messages

• Weblogic Security Programmatic Authentication API

  Hi all,
  I am trying to use weblogic authentication API with weblogic 11g and jdeveloper 11.1.1.2.
  According to programming security document, we can use weblogic.security.SimpleCallbackHandler or weblogic.security.URLCallbackHandler class.
  But i don't see any library to import those class.
  where can i download those library?
  With Regards,
  Wai Phyo

  Where can i get this Jar(com.bea.core.weblogic.security_2.0.1.0.jar). I have installed Weblogic10.3 on jdk1.6 and it has com.bea.core.weblogic.security_1.0.0.0_6-0-3-0.jar which does not have the weblogic.security.spi.AuthenticationProviderV2.
  Any help on this will be really appreciated.
  Thanks.
  Ajay

• Weblogic.security.SecurityInitilizationException

  WHILE START THE WEBLOGIC SERVER I HAVE FACING THIS PROBLEM.
  ERROR IS:
  weblogic.security.SecurityInitilizationException:USER WEBLOGIC IS NOT PERMITTED TO BOOT THE SERVER; THE SERVER POLICY MAY HAVE CHANGED IN SUCH AWAY THAT THE USER IS NO LONGER ABLE TO BOOT THE SERVER WITH THE ADMINISTARATIVE USER ACCOUNT OR CONTACT THE SYSTEM ADMINISTRATOR TO UPDATE THE SERVER POLICY DEFINITION.
  SO I WANT TO START THE SERVER WITH OUT UNINSTALL THE WEBLOGIC?

  instead of import weblogic.security.SubjectUtils; use import weblogic.security.spi.WLSUser; and get the username as below
  Set users = subject.getPrincipals(WLSUser.class);
            Iterator iter = users.iterator();
            while (iter.hasNext()){
                 userName = ((WLSUser)iter.next()).getName();
                 System.out.println(userName);
  this returns you the username

• Weblogic Security Checklist

  Does anybody have any documents or links that cover "hardening" a Weblogic server?
  We are putting together a security plan and we are trying to list the steps that
  one would take to secure a default Weblogic install. Any help would be appreciated.
  Thanks

  instead of import weblogic.security.SubjectUtils; use import weblogic.security.spi.WLSUser; and get the username as below
  Set users = subject.getPrincipals(WLSUser.class);
            Iterator iter = users.iterator();
            while (iter.hasNext()){
                 userName = ((WLSUser)iter.next()).getName();
                 System.out.println(userName);
  this returns you the username

• Weblogic.security.X509 alternative in WLS 9.1

  Hi All
  We have setup IIS 5.0 with 2 way SSL for client connection. We have also configured IIS weblogic proxy for Weblogic 9.1 using iisproxy.dll. The connection between IIS and WebLogic 9.1 is HTTP based. We are trying to get the client certificate in Weblogic 9.1 using the following code
  java.security.cert.X509Certificate certs [];
  certs = (java.security.cert.X509Certificate [])
  request.getAttribute("javax.servlet.request.X509Certificate");
  However the returned certificates are NULL.
  We have also enabled Client Cert Proxy and Weblogic Plug-in in Weblogic 9.1 configuration.
  We are trying to migrate from weblogic 8 to 9.1 and our previous code was as follows
  weblogic.security.X509 [] certs = (weblogic.security.X509[])req.getAttribute("javax.net.ssl.peer_certificates");
  This code work fine with the same IIS setup. Since weblogic.security.X509 is removed in WLS 9.1 we are forced to change our code.
  Please help!
  Message was edited by:
  rmkandan

  hi
  Currently I am using
  req.getHeader("WL-Proxy-Client-Cert")
  to get the client certificate and then i do the following to get the X509 cert format
       if (pemCert != null && pemCert.length() > 0 ){
            pemCertBuff.append("-----BEGIN CERTIFICATE-----");
            pemCertBuff.append(pemCert);
            pemCertBuff.append("-----END CERTIFICATE-----");
       System.out.println("CertificateUtil:getFingerPrint: pemCertBuff --"+pemCertBuff.toString());
       X509Certificate certs = null;
       try {
            CertificateFactory cf = CertificateFactory.getInstance("X.509");
            ByteArrayInputStream bis = new ByteArrayInputStream(pemCertBuff.toString().getBytes());
            weblogic.security.PEMInputStream pemIs = new weblogic.security.PEMInputStream(bis);
            BufferedInputStream bufis = new BufferedInputStream(pemIs);
            certs = (X509Certificate)cf.generateCertificate(bufis);
       } catch (CertificateException e) {
            // TODO Auto-generated catch block
            e.printStackTrace();
       } catch (IOException e) {
            // TODO Auto-generated catch block
            e.printStackTrace();
  And I am able to get the certificate, but I need to know is there any other elegant way to get the certificate as we did using weblogic.security.X509 class?
  Please help!!
  Message was edited by:
  rmkandan

• Weblogic.security.X509 API

  Hello All,
  Is the API documentation for the weblogic.security.X509 class, or for
  that matter the entire package, documented somewhere?
  Thanks,
  Dan
  [dan.vcf]

  Hello All,
  I would like a client java program to communicate with a WLS over a t3s
  connection with two-way SSL.
  We have generated certificates for browsers that work fine for the two-way SSL.
  I have access to the base 64 encoded certificate that the java client program
  can use. I am assuming I need a private key also for use in the
  setSSLClientCertificate(InputStream[] chain) method for decryption of data
  coming to to the client. For a WLS server, this is no problem.
  Question(s): Am I correct in this private key assumption? If I do need the
  private key, how could I get it.
  Thanks
  [dan.vcf]

• Weblogic.security.acl.DefaultRealmImpl missing

  I try to implement a custom realm. I get an Exception because
  weblogic.security.acl.Realm tries to use the class
  weblogic.security.acl.DefaultRealmImpl which is missing. Instead the
  class seems to exists in the package weblogic.security.acl.internal. Is
  there a workaround out there to make the whole thing work. Or do I have
  to wait for the next service pack (how long)?
  Thanks, Bodo.

  solved!
  simply import weblogic.jar in the project

• What is the best way to deploy/update custom security realm classes to WLS 6.0?

  From the WLS 6.0 console, I see that I can specify the Java class that
  implements my custom security realm but I am wondering what is the best way
  to deploy/update this code. I don't see a way to do this from the console.
  Does this mean that I have to manually copy the class files over that
  implement my custom security realm?

  Thanks Danut,
  A jar file seems to be a good way to package it up but it sounds like it
  still needs to be manually copied to each Weblogic server install directory
  post-installation and whenever it is updated. I thought it would be nice to
  be able to deploy/update the custom security realm by uploading it through
  the Console just as you can with web applications and EJBs.
  Brian
  "Danut Prisacaru" <[email protected]> wrote in message
  news:3aba2db0$[email protected]..
  You have to have your Custom Realm class in the class path. I usually havea
  jar file with all the Custom Realm classes and that jar I copy it in thelib
  folder. Then I modify "startWebLogic.cmd" and I add to the classpath
  ".\lib\CustomRealm.jar"
  set
  CLASSPATH=.;.\lib\weblogic_sp.jar;.\lib\weblogic.jar;.\lib\CustomRealm.jar;
  >
  Be aware that in order to have you custom realm besides creating thecustom
  realm using the console you also have to create a custom caching andchoose
  that one as your default caching realm.
  Here is how the security settings are looking in my "config.xml"
  <CustomRealm Name="CustomRealm"
  RealmClassName="Custom.appserver.weblogic.security.CustomRealm"/>
  <CachingRealm BasicRealm="CustomRealm" CacheCaseSensitive="true"
  Name="CustomCachingRealm"/>
  <Realm CachingRealm="CustomCachingRealm" FileRealm="wl_default_file_realm"
  Name="wl_default_realm"/>
  <FileRealm Name="wl_default_file_realm"/>
  <Security GuestDisabled="false"
  Name="mydomain" PasswordPolicy="wl_default_password_policy"
  Realm="wl_default_realm"/>
  Danut

• (Help) system classpath  -Vs-  the place where weblogic looks for classes

  The following is my app's hierarchy.
  myapp
  |
  |__myjsp.jsp
  |
  |__WEB-INF
  |
  |__classes
  |_ MyClass.class
  I am not able to use MyClass within myjsp.jsp
  i.e. a scriplet like that shown below gives an error stating that MyClass isnt found
  <% MyClass obj; %>
  I've tried setting the system classpath, but to no avail.
  Is there a difference between the system classpath and the place where weblogic looks for classes?
  (I am running my app by creating a myapp.war file and placing it in autodeploy folder)

  Try moving your class to a named package and use the appropriate import statement in your JSP. Loading it from WEB-INF/classes/packagename should be fine so you might want to remove the other classpath mods you made to eliminate that uncertainty.
  Here's a snippet from http://publib.boulder.ibm.com/infocenter/dmndhelp/v6rxmx/index.jsp?topic=/com.ibm.websphere.nd.doc/info/ae/ae/rweb_jsp_migration.html:
  "As of JSP 2.0, referring to any classes from the unnamed or default package is not allowed. This can result in a translation error on some containers, specifically those that run in a JDK 1.4 or greater environment which will also break compatibility with some older JSP applications. However, as of JDK 1.4, importing classes from the unnamed package is not valid. See Java 2 Platform, Standard Edition Version 1.4.2 Compatibility with Previous Releases for details. Therefore, for forwards compatibility, applications must not rely on the unnamed package. This restriction also applies for all other cases where classes are referenced, such as when specifying the class name for a tag in a Tag Library Descriptor (TLD) file."
  HTH,
  Mike
  Weblogic/J2EE Security Blog: http://monduke.com

• Weblogic security authentication; question to interact with the realm

  Hi, I have a quick question about weblogic security authentication....
  We are using weblogic 81sp3. We have user-group info in an Novell eDirectory LDAP server.
  Currently, a Novell Authenticator provider is configured under : Security > Realms > myRealm > Providers > Authentication This tells Weblogic from where to get the user and groups. Weblogic caches this information of the logged on users for certain time ( example : 60 secs ) after which it cleans the cache for all inactive users. We want to interact with the Weblogic cache. Add more user profile information to this cache and use it in our application .
  Does somebody know how to programmatically interact with Weblogic user-group cache - read , write , update and delete user-group info in cache and control time to live for the cache ?

  already checked
  TTLCache class which weblogic provides. But they seem to depracetd it
  help ?

• WebLogic looking for class file using the wrong case

  During my ant build, I precompile my JSPs using weblogic.jspc. All of the jars and wars are packaged into an ear and deployed to WebLogic 8.1 on Linux. When I access one of our normal screens, everything is good. Things go wrong when I try to access one of our help screens. We have a base help file that includes another file based on the screen code passed to it. The screen code is used in combination with a HashMap to look up the correct JSP to include. This part goes fine. But when the JSP is included, I get the following error. The best I can figure is that the class file is in mixed case (i.e., SampleHelp00.jsp and SampleHelp00.class), but Weblogic is looking for samplehelp00.class.
  I'm not even where I should begin looking to solve this. Anyone have any ideas?
  ----- BEGIN STACKTRACE -----
  javax.servlet.jsp.JspException:
  [HTTP:101249][ServletContext(id=70634941,name=grp,context-path=/grp)]:
  Servlet class jsp_servlet._help.__samplehelp00 for servlet
  /help/SampleHelp00.jsp could not be loaded because the requested class was not found in the classpath
  /usr/share/weblogic/weblogic81/config/wftesttest/webSysServer02/.wlnotdelete/extract/webSysServer02_wf-web-sys.wftesttest_grp/wf-web-sys.wftesttest.war:
  /weblogic81sp5/weblogic81sp5/config/wftesttest/webSysServer02/.wlnotdelete/extract/webSysServer02_wf-web-sys.wftesttest_grp/jarfiles/WEB-INF/lib/Struts_Validator-20010702.jar:
  /weblogic81sp5/weblogic81sp5/config/wftesttest/webSysServer02/.wlnotdelete/extract/webSysServer02_wf-web-sys.wftesttest_grp/jarfiles/WEB-INF/lib/struts.jar:
  /weblogic81sp5/weblogic81sp5/config/wftesttest/webSysServer02/.wlnotdelete/extract/webSysServer02_wf-web-sys.wftesttest_grp/jarfiles/WEB-INF/lib/taglibs-session.jar:
  /weblogic81sp5/weblogic81sp5/config/wftesttest/webSysServer02/.wlnotdelete/extract/webSysServer02_wf-web-sys.wftesttest_grp/jarfiles/WEB-INF/lib/wf.wftesttest.jar:
  /weblogic81sp5/weblogic81sp5/config/wftesttest/webSysServer02/.wlnotdelete/extract/webSysServer02_wf-web-sys.wftesttest_grp/jarfiles/_wl_cls_gen.jar:
  /weblogic81sp5/weblogic81sp5/config/wftesttest/webSysServer02/.wlnotdelete/extract/webSysServer02_wf-web-sys.wftesttest_grp.
  java.lang.ClassNotFoundException:
  jsp_servlet._help.__samplehelp00.
  at org.apache.struts.taglib.template.InsertTag.doEndTag()I(InsertTag.java:149)
  at jsp_servlet.__su_hl0._jspService(Ljavax/servlet/http/HttpServletRequest;Ljavax/servlet/http/HttpServletResponse; )V(__su_hl0.java:289)
  at weblogic.servlet.jsp.JspBase.service(Ljavax/servlet/ServletRequest;Ljavax/servlet/ServletResponse; )V(JspBase.java:33)
  at weblogic.servlet.internal.ServletStubImpl$ServletInvocationAction.run()Ljava/lang/Object;(ServletStubImpl.java:1072)
  at weblogic.servlet.internal.ServletStubImpl.invokeServlet(Ljavax/servlet/ServletRequest;Ljavax/servlet/ServletResponse;Lweblogic/servlet/internal/FilterChainImpl; )V(ServletStubImpl.java:465)
  at weblogic.servlet.internal.ServletStubImpl.invokeServlet(Ljavax/servlet/ServletRequest;Ljavax/servlet/ServletResponse; )V(ServletStubImpl.java:348)
  at weblogic.servlet.internal.RequestDispatcherImpl.forward(Ljavax/servlet/ServletRequest;Ljavax/servlet/ServletResponse; )V(RequestDispatcherImpl.java:328)
  at org.apache.struts.action.ActionServlet.processForward(Lorg/apache/struts/action/ActionMapping;Ljavax/servlet/http/HttpServletRequest;Ljavax/servlet/http/HttpServletResponse; )Z(ActionServlet.java:1847)
  at org.apache.struts.action.ActionServlet.process(Ljavax/servlet/http/HttpServletRequest;Ljavax/servlet/http/HttpServletResponse; )V(ActionServlet.java:1568)
  at org.apache.struts.action.ActionServlet.doGet(Ljavax/servlet/http/HttpServletRequest;Ljavax/servlet/http/HttpServletResponse; )V(ActionServlet.java:491)
  at javax.servlet.http.HttpServlet.service(Ljavax/servlet/http/HttpServletRequest;Ljavax/servlet/http/HttpServletResponse; )V(HttpServlet.java:740)
  at com.clear2pay.ppp.util.ui.struts.ActionServlet.service(Ljavax/servlet/http/HttpServletRequest;Ljavax/servlet/http/HttpServletResponse; )V(ActionServlet.java:138)
  at javax.servlet.http.HttpServlet.service(Ljavax/servlet/ServletRequest;Ljavax/servlet/ServletResponse; )V(HttpServlet.java:853)
  at weblogic.servlet.internal.ServletStubImpl$ServletInvocationAction.run()Ljava/lang/Object;(ServletStubImpl.java:1072)
  at weblogic.servlet.internal.ServletStubImpl.invokeServlet(Ljavax/servlet/ServletRequest;Ljavax/servlet/ServletResponse;Lweblogic/servlet/internal/FilterChainImpl; )V(ServletStubImpl.java:465)
  at weblogic.servlet.internal.TailFilter.doFilter(Ljavax/servlet/ServletRequest;Ljavax/servlet/ServletResponse;Ljavax/servlet/FilterChain; )V(TailFilter.java:28)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(Ljavax/servlet/ServletRequest;Ljavax/servlet/ServletResponse; )V(FilterChainImpl.java:27)
  at com.clear2pay.ppp.util.ui.SetCharacterEncodingFilter.doFilter(Ljavax/servlet/ServletRequest;Ljavax/servlet/ServletResponse;Ljavax/servlet/FilterChain; )V(SetCharacterEncodingFilter.java:150)
  at weblogic.servlet.internal.FilterChainImpl.doFilter(Ljavax/servlet/ServletRequest;Ljavax/servlet/ServletResponse; )V(FilterChainImpl.java:27)
  at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run()Ljava/lang/Object;(WebAppServletContext.java:6987)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Lweblogic/security/subject/AbstractSubject;Ljava/security/PrivilegedAction; )Ljava/lang/Object;(AuthenticatedSubject.java:321)
  at weblogic.security.service.SecurityManager.runAs(Lweblogic/security/acl/internal/AuthenticatedSubject;Lweblogic/security/acl/internal/AuthenticatedSubject;Ljava/security/PrivilegedAction; )Ljava/lang/Object;(SecurityManager.java:121)
  at weblogic.servlet.internal.WebAppServletContext.invokeServlet(Lweblogic/servlet/internal/ServletRequestImpl;Lweblogic/servlet/internal/ServletResponseImpl; )V(WebAppServletContext.java:3892)
  at weblogic.servlet.internal.ServletRequestImpl.execute(Lweblogic/kernel/ExecuteThread; )V(ServletRequestImpl.java:2766)
  at weblogic.kernel.ExecuteThread.execute(Lweblogic/kernel/ExecuteRequest; )V(ExecuteThread.java:224)
  at weblogic.kernel.ExecuteThread.run()V(ExecuteThread.java:183)
  at java.lang.Thread.startThreadFromVM(Ljava/lang/Thread; )V(Unknown Source)
  ----- END STACKTRACE -----
  Message was edited by:
  cabuki

  Ignore the part about precompiled JSPs being ignored on my development server. Turns out I had a stale cache. I cleared that out and now it recognizes the files.
  The problem with that, is now I'm getting an Error 500 when I try to access the page.
  ----- BEGIN STACKTRACE -----
  javax.servlet.jsp.JspException
       at org.apache.struts.taglib.template.InsertTag.doEndTag()I(InsertTag.java:149)
       at jsp_servlet.__su_h0._jspService(Ljavax.servlet.http.HttpServletRequest;Ljavax.servlet.http.HttpServletResponse; )V(__su_h0.java:316)
       at weblogic.servlet.jsp.JspBase.service(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse; )V(JspBase.java:33)
       at weblogic.servlet.internal.ServletStubImpl$ServletInvocationAction.run()Ljava.lang.Object; (ServletStubImpl.java:996)
       at weblogic.servlet.internal.ServletStubImpl.invokeServlet(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse;Lweblogic.servlet.internal.FilterChainImpl; )V(ServletStubImpl.java:419)
       at weblogic.servlet.internal.ServletStubImpl.invokeServlet(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse; )V(ServletStubImpl.java:315)
       at weblogic.servlet.internal.RequestDispatcherImpl.forward(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse; )V(RequestDispatcherImpl.java:318 )
       at org.apache.struts.action.ActionServlet.processForward(Lorg.apache.struts.action.ActionMapping;Ljavax.servlet.http.HttpServletRequest;Ljavax.servlet.http.HttpServletResponse; )Z(ActionServlet.java:1847)
       at org.apache.struts.action.ActionServlet.process(Ljavax.servlet.http.HttpServletRequest;Ljavax.servlet.http.HttpServletResponse; )V(ActionServlet.java:1568 )
       at org.apache.struts.action.ActionServlet.doGet(Ljavax.servlet.http.HttpServletRequest;Ljavax.servlet.http.HttpServletResponse; )V(ActionServlet.java:491)
       at javax.servlet.http.HttpServlet.service(Ljavax.servlet.http.HttpServletRequest;Ljavax.servlet.http.HttpServletResponse; )V(HttpServlet.java:740)
       at com.clear2pay.ppp.util.ui.struts.ActionServlet.service(Ljavax.servlet.http.HttpServletRequest;Ljavax.servlet.http.HttpServletResponse; )V(ActionServlet.java:138 )
       at javax.servlet.http.HttpServlet.service(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse; )V(HttpServlet.java:853)
       at weblogic.servlet.internal.ServletStubImpl$ServletInvocationAction.run()Ljava.lang.Object;(ServletStubImpl.java:996)
       at weblogic.servlet.internal.ServletStubImpl.invokeServlet(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse;Lweblogic.servlet.internal.FilterChainImpl; )V(ServletStubImpl.java:419)
       at weblogic.servlet.internal.TailFilter.doFilter(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse;Ljavax.servlet.FilterChain; )V(TailFilter.java:28 )
       at weblogic.servlet.internal.FilterChainImpl.doFilter(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse; )V(FilterChainImpl.java:27)
       at com.clear2pay.ppp.util.ui.SetCharacterEncodingFilter.doFilter(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse;Ljavax.servlet.FilterChain; )V(SetCharacterEncodingFilter.java:150)
       at weblogic.servlet.internal.FilterChainImpl.doFilter(Ljavax.servlet.ServletRequest;Ljavax.servlet.ServletResponse; )V(FilterChainImpl.java:27)
       at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run()Ljava.lang.Object;(WebAppServletContext.java:6458 )
       at weblogic.security.acl.internal.AuthenticatedSubject.doAs(Lweblogic.security.subject.AbstractSubject;Ljava.security.PrivilegedAction; )Ljava.lang.Object;(AuthenticatedSubject.java:321)
       at weblogic.security.service.SecurityManager.runAs(Lweblogic.security.acl.internal.AuthenticatedSubject;Lweblogic.security.acl.internal.AuthenticatedSubject;Ljava.security.PrivilegedAction; )Ljava.lang.Object;(SecurityManager.java:118 )
       at weblogic.servlet.internal.WebAppServletContext.invokeServlet(Lweblogic.servlet.internal.ServletRequestImpl;Lweblogic.servlet.internal.ServletResponseImpl; )V(WebAppServletContext.java:3661)
       at weblogic.servlet.internal.ServletRequestImpl.execute(Lweblogic.kernel.ExecuteThread; )V(ServletRequestImpl.java:2630)
       at weblogic.kernel.ExecuteThread.execute(Lweblogic.kernel.ExecuteRequest; )V(ExecuteThread.java:219)
       at weblogic.kernel.ExecuteThread.run()V(ExecuteThread.java:178 )
       at java.lang.Thread.startThreadFromVM(Ljava.lang.Thread; )V(Unknown Source)
  ----- END STACKTRACE -----
  The page in question is just a simple JSP using Struts (v 1.0.2) to call in a template.
  ----- BEGIN JSP -----
  <%@ page language="java" contentType="text/html; charset=UTF-8" %>
  <%@ taglib uri="/WEB-INF/lib/struts.tld" prefix="struts" %>
  <%@ taglib uri="/WEB-INF/lib/struts-bean.tld" prefix="bean" %>
  <%@ taglib uri='/WEB-INF/lib/struts-template.tld' prefix='template' %>
  <template:insert template='/t/system.jsp'>
  <template:put name='title'><bean:message key="tit_su_h0"/></template:put>
  <template:put name='sidenav' content='/t/su_snv.jsp'/>
  <template:put name='content' content='/c/su_h0_c.jsp'/>
  <template:put name='footer' content='/t/su_ftr.jsp' />
  </template:insert>
  ----- END JSP -----
  I passed the -keepGenerated flag to the precompile task in my Ant build so I could look at the line it's choking on, but it's not very helpful. I'm stuck. I can set up the build so it doesn't precompile the JSPs, but then the QA team wouldn't like me very much.

• SOAP handlers and the WebLogic Security Provider Framework

  I am new to WebLogic... I am trying to understand the Weblogic security framework in terms of how a SOAP message would be processed. Do SOAP handlers get called before the configured security providers? after being processed by the Authentication provider? after being processed by the Authorization provider? or at some other point?

  Thanks. But I have some questions about the seed:
  - where is it stored?
  - how is it encrypted?
  - is the seed regenerated periodically? or under certain circumstances?
  Regards,
  Janice Pang
  "Tom Hegadorn" <[email protected]> wrote:
  >
  >
  Hi Janice,
  If you choose to use the PrincipalValidatorImpl class in the
  weblogic.security.provider package, the sign() implementation
  will be the internal weblogic implementation. This implementation
  generates a random seed and computes a digest based on the
  random seed. I hope that helps you.
  Regards,
  Tom Hegadorn
  Sr. Developer Relations Engineer
  BEA Support
  "Janice Pang" <[email protected]> wrote:
  From the online documentations, it is said that this weblogic.security.provider.PrincipalValidatorImpl
  "signs" the authenticated principals to make sure they are not altered
  while they
  are transported on the network.
  The document also mentioned, as a suggested way to develop a customprincipal
  validation provider, to use this class and extend the capabilities of
  user and
  group classes. What kind of private information from the server isused
  for the
  signature and where is that information stored?

• Weblogic.security.SecurityInitializationException: Authentication for user

  Folks,
  I've newly installed Weblogic server on my home laptop.
  I can't startup the weblogic server.
  Errors are
  Now, I know the location of the boot.properties file the server accesses, because if I delete and restart the server it asks for userid/password.
  If that file does not exists it gives the following error
  weblogic.security.SecurityInitializationException: Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.
  So, I thought the best way is to RECOVER the password and tried following the steps
  1. At the command line, change directory to the domain and run the setEnv script to set the PATH and CLASSPATH.
  2. cd <domain_home>/security
  3. mv DefaultAuthenticatorInit.ldift DefaultAuthenticatorInit.ldift_BKP
  4. run java weblogic.security.utils.AdminAccount <tempadmin> <temppassword> ./
  -above command will Create a new DefaultAuthenticatorInit.ldift
  4. cd <domain_home>/servers/<AdminServer>/data/ldap
  5. mv DefaultAuthenticatormyrealmInit.initialized DefaultAuthenticatormyrealmInit.initialized_BKP
  6. Restart the Admin Server.
  7. Login with new username/password
  The question is how do I run Step 4) above? Like what is the Java home, or jar file that has the weblogic.security.utils.AdminsAccount class?
  Thanks
  Ravi

  The class "weblogic.security.utils.AdminAccount" is part of weblogic.jar
  And JAVA_HOME would be the java installation directory, for example "D:\Middleware\wls1036\jdk160_29\bin"
  So, for example, the same command can be read as
  D:\Middleware\wls1036\jdk160_29\bin\java -cp D:\Middleware\wls1036\wlserver_10.3\server\lib\weblogic.jar weblogic.security.utils.AdminAccount <tempadmin> <temppassword> .
  OR
  Another option for you is to just run setDomainEnv to set the JAVA_HOME and CLASSPATH variables for us.
  For windows open a command prompt and run,
  <domain_home>/bin/setDomainEnv.cmd
  For linux run,
  . <domain_home>/bin/setDomainEnv.sh {Remember the dot and space, ". ", at the beginning are very important for a open shell with the environment variables set}
  After running the above command, then cd <domain_home>/security (step 2)
  Now, after doing the above, you can directly run the command in step 4
  java weblogic.security.utils.AdminAccount <tempadmin> <temppassword> ./
  Arun

• Weblogic.security.ldaprealmv2.LDAPRealm problem..

  Hi All,
  I'm running WLS6.1sp1 and I have a bit of a snag. I've been able to
  successfully configure WLS6.1 to authenticate against a single development
  LDAP server, but I'm running into problems with my production LDAP
  environment.
  My production LDAP environment returns referrals. Normally this is dealt
  with by setting the Context.Referral parameter to "follow" rather than the
  default JNDI "ignore" value. I can't seem to find any documentation on the
  "configuration data" field of weblogic.security.ldaprealmv2.LDAPRealm or
  even get at any API docs for this class.
  Can somebody tell me if there is a configuration parameter I can pass to
  this class which accomplishes this? If not, can BEA provide some assistance
  (source code or API documentation) so that we can modify this class? (I'm
  not excited about writing my own CustomAuthentication class this week..)
  Jason Hanna
  Lead Technical Architect - EMC.com

  >
  My production LDAP environment returns referrals. Normally this is dealt
  with by setting the Context.Referral parameter to "follow" rather than the
  default JNDI "ignore" value. I can't seem to find any documentation on the
  "configuration data" field of weblogic.security.ldaprealmv2.LDAPRealm or
  even get at any API docs for this class.
  Can somebody tell me if there is a configuration parameter I can pass to
  this class which accomplishes this? If not, can BEA provide someassistance
  (source code or API documentation) so that we can modify this class? (I'm
  not excited about writing my own CustomAuthentication class this week..)
  The ldap realm v2 uses the netscape sdk. By default, a netscape sdk client
  follows
  referrals automatically.However, the client binds anonymously to the server.
  There is currently no method for the ldap realm v2 to follow referrals and
  bind
  as a specific user.
  Does your production system have the same principal and credentials for
  both the original and referral directory server?
  Peter

• Weblogic.security.acl.User extends java.security.Identity which is deprecated

  I have been developing a custom realm for WLS5.1 and I discovered that the
  weblogic classes seem to be based on JDK1.1 classes some of which
  have been deprecated (e.g. java.security.Identity). I checked the docs
  for WLS6.0 and it also uses the same classes.
  When do you (BEA) intend to bring the weblogic security classes up
  to date? JDK 1.2 has been out for a LONG time!

  The WLS security group is currently looking into this.
  -Nelson