Weblogic Security(Change Password)

Similar Messages

• Weblogic.security.Encrypt  -and-  Not enough space

  This post has two questions.
  I have a simple application on wls9.2 that is a web front end to the weblogic.security.Encrypt command line utility. It seems to work fine, but after a little bit of use I am seeing the following:
  java.io.IOException: Not enough space
  at java.lang.UNIXProcess.forkAndExec(Native Method)
  at java.lang.UNIXProcess.<init>(UNIXProcess.java:53)
  at java.lang.ProcessImpl.start(ProcessImpl.java:65)
  at java.lang.ProcessBuilder.start(ProcessBuilder.java:451)
  at java.lang.Runtime.exec(Runtime.java:591)
  at java.lang.Runtime.exec(Runtime.java:429)
  at java.lang.Runtime.exec(Runtime.java:326)
  at encrypt.wls92Encrypt(Unknown Source)
  at encrypt.doGet(Unknown Source)
  at encrypt.doPost(Unknown Source)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:763)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
  at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:223)
  at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:125)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:283)
  at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:175)
  at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3245)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:121)
  at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2003)
  at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:1909)
  at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1359)
  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
  at weblogic.work.ExecuteThread.run(ExecuteThread.java:181)
  1) Here is the forking code:
  try {
  proc = Runtime.getRuntime().exec("java -Dweblogic.RootDirectory="+rootDir+" weblogic.security.Encrypt "+password);
  BufferedReader bf=new BufferedReader(new InputStreamReader(proc.getInputStream()));
  line=bf.readLine();
  bf.close();
  } catch (IOException e) {
  Is there a better way to do this, without forking? Seems odd to execute a java call, in java, just to get the encrypted string. I'd like to call weblogic.security.Encrypt inline, but have been unable to do so.
  2) Why would the Not enough space error creep up? Researching it, it seems like it is a swap problem, but that does not seem to be the case on our system. A top shows:
  Memory: 8192M phys mem, 2769M free mem, 5004M swap, 5004M free swap
  at the time of failure. Disk usage is looking great as well. The JVM heapsize is around 80% free. An lsof on the system shows about 150 open files on the managed server.
  Any ideas on how to troubleshoot this would be appreciated.
  Thanks

  I use CCleaner from the AppStore to delete the 'useless' stuff. It's free and works great for me

• Jython having issue importing weblogic modules for changing passwords

  I am trying to import some WLST modules into a Jython script as outline in the documentation at http://e-docs.bea.com/wls/docs92/config_scripting/config_WLS.html#wp1019971
  The strange thing is that it says it is a WLST script, but it appears to be a Jython script. I tried performing this import using WLST interactive mode, but this did not work.
  I am passing the passwords as encrypted strings while using the encrypt() function
  Here is the script:
  import sys
  from weblogic.management.security.authentication import UserPasswordEditorMBean
  #To be invoked by java -cp /usr/local/bea/wlserver_10.0/common/lib/jython.jar org.python.util.jython
  #usage: wlst.sh ResetWLPassword.py <current_pass> <user> <new_pass> <adminServerURL>
  #{3DES}/asdfadsf== -
  #{3DES}asdfafdsadsf== -
  myPass = sys.argv[1]
  myUser = sys.argv[2]
  newPass = sys.argv[3]
  adminServerURL = sys.argv[4]
  #Connect
  try:
  connect('weblogic',myPass,adminServerURL)
  except:
  print "Could not connect using supplied credentials"
  dumpStack()
  try:
  print "Changing password ..."
  atnr=cmo.getSecurityConfiguration().getDefaultRealm().lookupAuthenticationProvider("DefaultAuthenticator")
  atnr.changeUserPassword(myUser,myuser,newPass)
  print "Changed password successfully"
  except:
  print "Password change failed"
  dumpStack()
  I am receiving the following error message:
  java -cp /usr/local/bea/wlserver_10.0/common/lib/jython.jar org.python.util.jython /tmp/ResetWLPassword.py "{3DES}/adsfadsfadsf==" weblogic "{3DES}asdfadsfasd== " t3://localhost:7003
  sys-package-mgr: can't create package cache dir, '/usr/local/bea/wlserver_10.0/common/lib/cachedir/packages'
  Traceback (innermost last):
  File "/tmp/ResetWLPassword.py", line 2, in ?
  ImportError: No module named management

  blumo wrote:
  You are calling org.python.util.jython again instead of weblogic.WLST like I advised in my first post. Invoke WLST (not jython) and pass your values in cleartext. Like I said in my previous post, I was able to execute your script without issue when calling WLST and passing cleartext values (I did have to modify one line to due a bug in your script -- see my prior posts).This seems to work in terms of getting the code to run, but there is still a problem with passing the arguments to the changeUserPassword() method.
  I entered the sequence of commands in the script manually into WLST and it works without issue. It even works without the import, which is strange that Oracle includes it in their documentation.
  I am going to post the code here, perhaps there is something wrong syntax-wise with the way I am authenticating, but I can't put my finger on it.
  import sys
  from weblogic.management.security.authentication import UserPasswordEditorMBean
  myPass = sys.argv[1]
  myUser = sys.argv[2]
  newPass = sys.argv[3]
  adminServerURL = sys.argv[4]
  #Connect
  try:
  connect(myUser,myPass,adminServerURL)
  except:
  print "Could not connect using supplied credentials"
  dumpStack()
  try:
  print "Changing password ..."
  atnr=cmo.getSecurityConfiguration().getDefaultRealm().lookupAuthenticationProvider("DefaultAuthenticator")
  #atnr.changeUserPassword('weblogic','weblogic','12345678')
  atnr.changeUserPassword(myUser,myPass,newPass)
  print "Changed password successfully"
  except:
  print "Password change failed"
  dumpStack()
  throws:
  Connecting to t3://localhost:7003 with userid weblogic ...
  This Exception occurred at Mon Feb 23 11:50:18 PST 2009.
  javax.naming.AuthenticationException [Root exception is java.lang.SecurityException: User: weblogic, failed to be authenticated.]
       at weblogic.jndi.internal.ExceptionTranslator.toNamingException(ExceptionTranslator.java:42)
       at weblogic.jndi.WLInitialContextFactoryDelegate.toNamingException(WLInitialContextFactoryDelegate.java:773)
       at weblogic.jndi.WLInitialContextFactoryDelegate.pushSubject(WLInitialContextFactoryDelegate.java:670)
       at weblogic.jndi.WLInitialContextFactoryDelegate.newContext(WLInitialContextFactoryDelegate.java:466)
       at weblogic.jndi.WLInitialContextFactoryDelegate.getInitialContext(WLInitialContextFactoryDelegate.java:373)
       at weblogic.jndi.Environment.getContext(Environment.java:307)
       at weblogic.jndi.Environment.getContext(Environment.java:277)
       at weblogic.jndi.WLInitialContextFactory.getInitialContext(WLInitialContextFactory.java:117)
       at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)
       at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:288)
       at javax.naming.InitialContext.init(InitialContext.java:223)
       at javax.naming.InitialContext.<init>(InitialContext.java:197)
       at weblogic.management.scripting.WLSTHelper.populateInitialContext(WLSTHelper.java:498)
       at weblogic.management.scripting.WLSTHelper.initDeprecatedConnection(WLSTHelper.java:551)
       at weblogic.management.scripting.WLSTHelper.initConnections(WLSTHelper.java:303)
       at weblogic.management.scripting.WLSTHelper.connect(WLSTHelper.java:201)
       at weblogic.management.scripting.WLScriptContext.connect(WLScriptContext.java:60)
       at weblogic.management.scripting.utils.WLSTUtil.initializeOnlineWLST(WLSTUtil.java:121)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:597)
       at org.python.core.PyReflectedFunction.__call__(PyReflectedFunction.java:160)
       at org.python.core.PyMethod.__call__(PyMethod.java:96)
       at org.python.core.PyObject.__call__(PyObject.java:248)
       at org.python.core.PyObject.invoke(PyObject.java:2016)
       at org.python.pycode._pyx6.connect$1(<iostream>:16)
       at org.python.pycode._pyx6.call_function(<iostream>)
       at org.python.core.PyTableCode.call(PyTableCode.java:208)
       at org.python.core.PyTableCode.call(PyTableCode.java:404)
       at org.python.core.PyTableCode.call(PyTableCode.java:287)
       at org.python.core.PyFunction.__call__(PyFunction.java:179)
       at org.python.pycode._pyx18.f$0(/tmp/ResetWLPassword.py:20)
       at org.python.pycode._pyx18.call_function(/tmp/ResetWLPassword.py)
       at org.python.core.PyTableCode.call(PyTableCode.java:208)
       at org.python.core.PyCode.call(PyCode.java:14)
       at org.python.core.Py.runCode(Py.java:1135)
       at org.python.util.PythonInterpreter.execfile(PythonInterpreter.java:167)
       at weblogic.management.scripting.WLST.main(WLST.java:106)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
       at java.lang.reflect.Method.invoke(Method.java:597)
       at weblogic.WLST.main(WLST.java:29)
  Caused by: java.lang.SecurityException: User: weblogic, failed to be authenticated.
       at weblogic.common.internal.RMIBootServiceImpl.authenticate(RMIBootServiceImpl.java:116)
       at weblogic.common.internal.RMIBootServiceImpl_WLSkel.invoke(Unknown Source)
       at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:589)
       at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:479)
       at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
       at weblogic.security.service.SecurityManager.runAs(Unknown Source)
       at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:475)
       at weblogic.rmi.internal.BasicServerRef.access$300(BasicServerRef.java:59)
       at weblogic.rmi.internal.BasicServerRef$BasicExecuteRequest.run(BasicServerRef.java:1016)
       at weblogic.work.ExecuteThread.execute(ExecuteThread.java:200)
       at weblogic.work.ExecuteThread.run(ExecuteThread.java:172)
  Could not connect using supplied credentials
  Changing password ...
  Password change failed

• Changing the weblogic admin user password

  I have faced an issue in reseting weblogic admin user password. Following are the steps i have executed in sequence.please help to understand why it is not working this way
  I have 2 managed instances running on two separate computers.
  `Step 1.` shutdown the admin server instance ( i did not shutdown the node manager and other 2 manage server instances
  `Step 2.` Set the environment variables
  `cd $DOMAIN_HOME/bin`
  . ./setDomainEnv.sh
  `Step 3.` then executed the command below to create the new password
  cd ../security
  mv DefaultAuthenticatorInit.ldift oldDefaultAuthenticator
  java weblogic.security.utils.AdminAccount weblogic new_password .
  `Step 4.` backed up existing `boot.properties` file and created a new file. Also backed up data directory of admin server. created a new `boot.properties` file with following configuration
  with plain text username(weblogic_admin) and password (new_password).
  cd ../servers/AdminServer
  mv data data_old
  cd security/
  mv boot.properties oldboot.properties
  Step 5. Then i restarted the admin server. admin server is restarted successfully and i was able to login the admin console with my new username and password. Issue came when i try to shoutdown the admin server. when i execute sh stopWeblogicAdmin.sh , it will through following exception. But , if i kill the admin server process , then i am able to start the admin server with out any problem. and i am able to login to the server also. I am also able to stop and start manage server instances through admin console. But why it is failing only when i try to stop.could anybody help me on this
  Stopping Weblogic Server...
  Initializing WebLogic Scripting Tool (WLST) ...
  Welcome to WebLogic Server Administration Scripting Shell
  Type help() for help on available commands
  Connecting to t3://jipsl13t:12001 with userid weblogic_admin ...
  This Exception occurred at Fri Jan 18 12:20:09 GMT-00:00 2013.
  javax.naming.AuthenticationException [Root exception is java.lang.SecurityException: User: weblogic_admin, failed to be authenticated.]
  at weblogic.jndi.internal.ExceptionTranslator.toNamingException(ExceptionTranslator.java:42)
  at weblogic.jndi.WLInitialContextFactoryDelegate.toNamingException(WLInitialContextFactoryDelegate.java:788)
  at weblogic.jndi.WLInitialContextFactoryDelegate.pushSubject(WLInitialContextFactoryDelegate.java:682)
  at weblogic.jndi.WLInitialContextFactoryDelegate.newContext(WLInitialContextFactoryDelegate.java:469)
  at weblogic.jndi.WLInitialContextFactoryDelegate.getInitialContext(WLInitialContextFactoryDelegate.java:376)
  at weblogic.jndi.Environment.getContext(Environment.java:315)
  at weblogic.jndi.Environment.getContext(Environment.java:285)
  at weblogic.jndi.WLInitialContextFactory.getInitialContext(WLInitialContextFactory.java:117)
  at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)
  at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:288)
  at javax.naming.InitialContext.init(InitialContext.java:223)
  at javax.naming.InitialContext.<init>(InitialContext.java:197)
  at weblogic.management.scripting.WLSTHelper.populateInitialContext(WLSTHelper.java:520)
  at weblogic.management.scripting.WLSTHelper.initDeprecatedConnection(WLSTHelper.java:573)
  at weblogic.management.scripting.WLSTHelper.initConnections(WLSTHelper.java:313)
  at weblogic.management.scripting.WLSTHelper.connect(WLSTHelper.java:203)
  at weblogic.management.scripting.WLScriptContext.connect(WLScriptContext.java:61)
  at weblogic.management.scripting.utils.WLSTUtil.initializeOnlineWLST(WLSTUtil.java:147)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at org.python.core.PyReflectedFunction.__call__(Unknown Source)
  at org.python.core.PyMethod.__call__(Unknown Source)
  at org.python.core.PyObject.__call__(Unknown Source)
  at org.python.core.PyObject.invoke(Unknown Source)
  at org.python.pycode._pyx4.connect$1(<iostream>:16)
  at org.python.pycode._pyx4.call_function(<iostream>)
  at org.python.core.PyTableCode.call(Unknown Source)
  at org.python.core.PyTableCode.call(Unknown Source)
  at org.python.core.PyFunction.__call__(Unknown Source)
  at org.python.pycode._pyx15.f$0(/product/jip/jipsl11t/wls/eni132_domain/shutdown.py:6)
  at org.python.pycode._pyx15.call_function(/product/tsm/jipsl11t/wls/eni132_domain/shutdown.py)
  at org.python.core.PyTableCode.call(Unknown Source)
  at org.python.core.PyCode.call(Unknown Source)
  at org.python.core.Py.runCode(Unknown Source)
  at org.python.util.PythonInterpreter.execfile(Unknown Source)
  at weblogic.management.scripting.WLST.main(WLST.java:124)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at weblogic.WLST.main(WLST.java:29)
  Caused by: java.lang.SecurityException: User: weblogic_admin, failed to be authenticated.
  at weblogic.common.internal.RMIBootServiceImpl.authenticate(RMIBootServiceImpl.java:116)
  at weblogic.common.internal.RMIBootServiceImpl_WLSkel.invoke(Unknown Source)
  at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:667)
  at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:522)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)
  at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:518)
  at weblogic.rmi.internal.wls.WLSExecuteRequest.run(WLSExecuteRequest.java:118)
  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:207)
  at weblogic.work.ExecuteThread.run(ExecuteThread.java:176)
  Problem invoking WLST - Traceback (innermost last):
  File "/product/jip/jipsl11t/wls/eni132_domain/shutdown.py", line 6, in ?
  File "<iostream>", line 22, in connect
  File "<iostream>", line 646, in raiseWLSTException
  WLSTException: Error occured while performing connect : User: weblogic_admin, failed to be authenticated.
  Use dumpStack() to view the full stacktrace
  Done
  Stopping Derby Server...
  Edited by: user8643895 on Jan 18, 2013 9:28 AM

  Hi,
  This issue was occurring because stopWebLogic.sh was picking the username and password from properties user config files in user's home directory: username-WebLogicConfig.properties, username-WebLogicKey.properties.
  If the credentials for weblogic server are changed then new user config files should be created, if these are not created then stopWebLogic.sh will pick up the old credentials and hence fail.
  Please refer the following document for information on user configuration files:
  http://docs.oracle.com/cd/E21764_01/web.1111/e13813/reference.htm#WLSTC430
  Connecting to the server after deleting username-WebLogicConfig.properties, username-WebLogicKey.properties resolves the issue as it forces the script to use the credentials provided by the user while running stopWebLogic.sh
  There are two ways you can resolve this issue:
  1) Create new user config files with the correct credentials as explained in the following document:
  http://docs.oracle.com/cd/E21764_01/web.1111/e13813/reference.htm#WLSTC430
  Or
  2) To force the stopWeblogic.sh script to use credentials provided by the user while running the script follow these steps:
  In the stopWeblogic.sh file use the following connect command:
  connect(userConfigFile='',userKeyFile='', url='${ADMIN_URL}', adminServerName='${SERVER_NAME}')instead of:
  connect(${userID} ${password} url='${ADMIN_URL}', adminServerName='${SERVER_NAME}')Hence in the stopWebLogic.sh script replace:
  echo "import os" >"shutdown.py"
  echo "if os.environ.has_key('wlsUserID'):" >>"shutdown.py"
  echo " wlsUserID = os.environ['wlsUserID']" >>"shutdown.py"
  echo "if os.environ.has_key('wlsPassword'):" >>"shutdown.py"
  echo " wlsPassword = os.environ['wlsPassword']" >>"shutdown.py"
  echo "connect(${userID} ${password} url='${ADMIN_URL}', adminServerName='${SERVER_NAME}')" >>"shutdown.py"
  echo "shutdown('${SERVER_NAME}','Server')" >>"shutdown.py"
  echo "exit()" >>"shutdown.py"with:
  echo "import os" >"shutdown.py"
  echo "if os.environ.has_key('wlsUserID'):" >>"shutdown.py"
  echo " wlsUserID = os.environ['wlsUserID']" >>"shutdown.py"
  echo "if os.environ.has_key('wlsPassword'):" >>"shutdown.py"
  echo " wlsPassword = os.environ['wlsPassword']" >>"shutdown.py"
  echo "connect(userConfigFile='',userKeyFile='', url='${ADMIN_URL}', adminServerName='${SERVER_NAME}')" >>"shutdown.py"
  echo "shutdown('${SERVER_NAME}','Server')" >>"shutdown.py"
  echo "exit()" >>"shutdown.py"
  Regards,
  Kishore

• HT1933 I have old email address's I used for iTune music purchases and cannot change password on several old accounts. Now some of the music I purchased I can not download and authorize it on my device. What can I do password security does not match my bi

  I have old email address's I used for iTune music purchases and cannot change password on several old accounts. Now some of the music I purchased I can not download and authorize it on my device. What can I do password security does not match my birthdate on two of the accounts. Apple can not send me email with a password authorization on several current accounts that I have with them. How can I contact Apple with this annoying problem I can not fix.

  settings - app/iTunes store - sign out and sign back in with your new id.
  Note - if your older apps needs an update it will use your old apple id and password, as Apps are tied to the apple id that was used to purchase it.
  You can't merge apple id.

• How do i disable "change password" in "security & privacy"

  Hi... i think something might be wrong... I have a standard account (for a child) that is locked down by parental controls by an admin user. I've locked changing the password - "Disable changing the password"... The lock icon is locked for users and groups in the standard account - so that works.
  However if i goto System Preferences/Security & Privacy/General/Change Password it allows for changing of the standard account password and does not require the admin password.
  Really? Can anybody else confirm this? How do I lock this also?
  thanks in advance.

  This isn't an answer.
  You aren't the only one seeing this behavior. If you monitor the "More Like This" box (top right), other threads appear. Opening them usually displays other threads.
  You might want to submit feedback to Apple so they are aware of the problem:
  http://www.apple.com/feedback/

• WLST script for changing password for userid in Weblogic 9.2

  Hello Everyone,
  We want to change password for userid in weblogic 9.2. Is there a way we can do this by using WLST script? If so please provide me with steps for doing that using WLST. Thanks in advance.
  - - Weblogic Consultant

  Did you try going to the WLST documentation and searching for it? Go to [http://edocs.bea.com/wls/docs92/pdf/config_scripting.pdf] and search for "Changing a Password". The example there seems to be what you need.

• Change password in Weblogic 10.3

  Hi,
  I follows change password of weblogic admin for change password,
  I have 2 problems:
  In step 8, please for me file name to edit WLS_PW (is startManagedWebLogic?)
  In step 9, I cannot find gateway.ini file
  If in step 8 and 9, I input password, for example password1 then everybody (that permission with my computer) can see my password?
  Please help me in step 8 and 9 and explain why password not encryption in step 8 and 9
  You are there 1 other way for change password in Weblogic?
  Thanks

  Hi,
  I would suggest you to go through the below link to get the exact steps to change your Weblogic password.
  http://weblogic-wonders.com/weblogic/2009/12/15/resetting-admin-username-password/
  Hope above information helped you.
  Regards,
  Ravish Mody

• Error when changing password of NW J2ee's secure store and Oracle sqlplus

  Hi all,
  I am wondering on the following:
  Current setting:
  I have "old_password" for J2ee configtool's secure store.
  I have "old_password" for Oracle's sapsr2 user inside Sqlplus.
  When I change the password for all 3 place from "old_password" to "new_password", I am not able to connect to configtool. I am also not able to start the Portal service; with logfile error "invalid user/password"
  If I change the password back to "old_password", I can connect to configtool as well as start the service.
  Snote and forumers (google) mention that update configtool's secure store and "alter user sapsr3" for Oracle database is all I need to change password.
  Have I miss out some step in order to change the password for my Enterprise Portal?
  Thank you.
  Regards

  edit: never mind, found the meaning of SDM.
  but the command below, is it usable?
  For Windows OS:
  Open a command prompt and navigate to the folder <Drive>:\usr\sap\DP1\JC21\SDM\program
  Execute the below commands:
  sdm jstartup "mode=standalone"
  sdm changepassword "newpassword=<Enterthenewpassword>"
  sdm jstartup "mode=integrated"
  StartServer.bat
  Edited by: Sek Yao Ooi on Dec 7, 2009 9:21 AM

• Emails have been sent from my iphone and they are not from me.  what do I do to secure this doesn't happen again?  I've already changed password

  emails have been sent from my iphone and they are not from me.  what do I do to secure this doesn't happen again?  I've already changed password

  I have this problem too, it's called "spoofing" aparently.
  There isn't much you can do except change your email address which is a huge problem if like me you have an Apple one and can't change it without losing your whole iTunes and App purchase history which is a billiantly stupid bit of design on Apple's part.
  There's some interesting stuff here: http://www.bluehostforum.com/showthread.php?132-how-to-stop-spoofed-email-addres ses
  but I don't think there's much chance of applying it to iCloud but I am not an expert.

• How to trigger and change password for AD user after form based login

  Hello,
  We are authenticating against Active Directory with Weblogic 10.3 using FORM based security. Everything is working. I need to now change a password for an authenticated user. For example, I have set a user to have their password expire on next logon from the AD side. The user logs in but somehow I need to trap some info from Active Directory (or an LDAP conversation) to figure out if I need to force the user to change password.
  Do I need to start looking at custom code with LDAP Java SDK's or can I use a canned MBean from Weblogic Server.
  I am looking at http://www.mozilla.org/directory/ for LDAP.
  Can I set/reset an AD user's password with an MBean like the following link?
  http://download.oracle.com/docs/cd/E13222_01/wls/docs92/javadocs/index.html?weblogic/management/security/authentication/UserPasswordEditorMBean.html
  If anyone has any experience with this or can point me in the right direction let me know.
  If anyone else is interested please add to the tread and I'll be sure to keep the found solution(s) updated here.
  Thanks...........
  JJ Everett

  Hello JJ
  Please see document ID 403484.1 in http://metalink.oracle.com. This may help to understand what you are aiming to do. Cheers
  -- Nathan

• Weblogic.security.SecurityInitializationException: Authentication for user

  Folks,
  I've newly installed Weblogic server on my home laptop.
  I can't startup the weblogic server.
  Errors are
  Now, I know the location of the boot.properties file the server accesses, because if I delete and restart the server it asks for userid/password.
  If that file does not exists it gives the following error
  weblogic.security.SecurityInitializationException: Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.
  So, I thought the best way is to RECOVER the password and tried following the steps
  1. At the command line, change directory to the domain and run the setEnv script to set the PATH and CLASSPATH.
  2. cd <domain_home>/security
  3. mv DefaultAuthenticatorInit.ldift DefaultAuthenticatorInit.ldift_BKP
  4. run java weblogic.security.utils.AdminAccount <tempadmin> <temppassword> ./
  -above command will Create a new DefaultAuthenticatorInit.ldift
  4. cd <domain_home>/servers/<AdminServer>/data/ldap
  5. mv DefaultAuthenticatormyrealmInit.initialized DefaultAuthenticatormyrealmInit.initialized_BKP
  6. Restart the Admin Server.
  7. Login with new username/password
  The question is how do I run Step 4) above? Like what is the Java home, or jar file that has the weblogic.security.utils.AdminsAccount class?
  Thanks
  Ravi

  The class "weblogic.security.utils.AdminAccount" is part of weblogic.jar
  And JAVA_HOME would be the java installation directory, for example "D:\Middleware\wls1036\jdk160_29\bin"
  So, for example, the same command can be read as
  D:\Middleware\wls1036\jdk160_29\bin\java -cp D:\Middleware\wls1036\wlserver_10.3\server\lib\weblogic.jar weblogic.security.utils.AdminAccount <tempadmin> <temppassword> .
  OR
  Another option for you is to just run setDomainEnv to set the JAVA_HOME and CLASSPATH variables for us.
  For windows open a command prompt and run,
  <domain_home>/bin/setDomainEnv.cmd
  For linux run,
  . <domain_home>/bin/setDomainEnv.sh {Remember the dot and space, ". ", at the beginning are very important for a open shell with the environment variables set}
  After running the above command, then cd <domain_home>/security (step 2)
  Now, after doing the above, you can directly run the command in step 4
  java weblogic.security.utils.AdminAccount <tempadmin> <temppassword> ./
  Arun

• Server subsystem failed. Reason: weblogic.security.SecurityInitializationException: Authentication for user  denied

  Hi,
  when I want to start managed server :
  <Sep 5, 2014 4:56:12 PM GST> <Critical> <WebLogicServer> <BEA-000386> <Server subsystem failed. Reason: weblogic.security.SecurityInitializationException: Authentication for user  denied
  weblogic.security.SecurityInitializationException: Authentication for user  denied
          at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.doBootAuthorization(CommonSecurityServiceManagerDelegateImpl.java:966)
          at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1054)
          at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:873)
          at weblogic.security.SecurityService.start(SecurityService.java:141)
          at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
          Truncated. see log file for complete stacktrace
  Caused By: javax.security.auth.login.FailedLoginException: [Security:090304]Authentication Failed: User  javax.security.auth.login.LoginException: [Security:090301]Password Not Supplied
          at weblogic.security.providers.authentication.LDAPAtnLoginModuleImpl.login(LDAPAtnLoginModuleImpl.java:261)
          at com.bea.common.security.internal.service.LoginModuleWrapper$1.run(LoginModuleWrapper.java:110)
          at java.security.AccessController.doPrivileged(Native Method)
          at com.bea.common.security.internal.service.LoginModuleWrapper.login(LoginModuleWrapper.java:106)
          at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
          Truncated. see log file for complete stacktrace
  >
  <Sep 5, 2014 4:56:12 PM GST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to FAILED>
  <Sep 5, 2014 4:56:12 PM GST> <Error> <WebLogicServer> <BEA-000383> <A critical service failed. The server will shut itself down>
  <Sep 5, 2014 4:56:12 PM GST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to FORCE_SHUTTING_DOWN>
  Thanks

  Never mind, the correct command is:
  wls:/nm/IDMDomain> pr=makePropertiesObject("username=weblogic;password=weblogic0");
  wls:/nm/IDMDomain> nmStart('AdminServer',props=pr);
  It would be interesting however to have a list of all names of environmental variables that we can possibly set.
  Cheers.

• Weblogic.security.service.NotYetInitializedException using JMX

  Hi there,
  I'm trying to use JMX to add a notification listener to listen for attribute changes to a WLS 8.1 MBean. My code when setting up the listener is as so:
  String url = "t3://localhost:7001";
  String serverName = "Server1";
  String userName = "weblogic";
  String password = "weblogic";
  MBeanHome home = null;
  RemoteMBeanServer rmbs = null;
  Environment env = new Environment();
  env.setProviderUrl(url);
  env.setSecurityPrincipal(userName);
  env.setSecurityCredentials(password);
  try {
       Context ctx = env.getInitialContext();
       home = (MBeanHome) ctx.lookup(MBeanHome.ADMIN_JNDI_NAME);
  } catch (NamingException e) {
       e.printStackTrace();
  rmbs = home.getMBeanServer();
  WLListener listener = new WLListener();
  WebLogicObjectName mbeanName = new WebLogicObjectName("examplesServer", "Server", "examples");
  rmbs.addNotificationListener(mbeanName, listener, null, null);This seems to work fine, I do not get any error messages. As you can see I'm using the server started through the examples, and I'm adding a notification listener to the ServerMBean.
  My notification listener code is as so:
  public void handleNotification(Notification notification, Object arg1) {
       AttributeChangeNotification changedAttrib = (AttributeChangeNotification) notification;
       try {
            System.out.println("Changed value from: " + changedAttrib.getOldValue() + " to " + changedAttrib.getNewValue());
       } catch (Exception ex) {
            ex.printStackTrace();
  public boolean isNotificationEnabled(Notification arg0) {
       return true;
  }Only when a notification happens and I call getOldValue() I get:
  weblogic.security.service.NotYetInitializedException: [Security:090392]SecurityServiceManager not yet initialized.
       at weblogic.security.service.SecurityServiceManagerDelegateImpl.getSecurityService(SecurityServiceManagerDelegateImpl.java:156)
       at weblogic.security.service.SecurityServiceManager.getSecurityService(SecurityServiceManager.java:175)
       at weblogic.management.internal.SecurityHelper.getRoleManager(SecurityHelper.java:402)
       at weblogic.management.internal.SecurityHelper.access$100(SecurityHelper.java:54)
       at weblogic.management.internal.SecurityHelper$IsAccessAllowedPrivilegeAction.run(SecurityHelper.java:493)
       at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
       at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:118)
       at weblogic.management.internal.SecurityHelper.isAccessAllowed(SecurityHelper.java:393)
       at weblogic.management.internal.AttributeChangeNotification.getOldValue(AttributeChangeNotification.java:136)
       at com.xxxx.password.PasswordBme$WLListener.handleNotification(PasswordBme.java:76)
       at com.xxxx.password.PasswordBme$WLListener_WLSkel.invoke(Unknown Source)
       at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:477)
       at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:420)
       at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
       at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:144)
       at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:415)
       at weblogic.rmi.internal.BasicExecuteRequest.execute(BasicExecuteRequest.java:30)
       at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:219)
       at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:178)Is there a step I'm missing out? The entry for this message in the documentation suggests calling BEA support.

  Hi there,
  I'm trying to use JMX to add a notification listener to listen for attribute changes to a WLS 8.1 MBean. My code when setting up the listener is as so:
  String url = "t3://localhost:7001";
  String serverName = "Server1";
  String userName = "weblogic";
  String password = "weblogic";
  MBeanHome home = null;
  RemoteMBeanServer rmbs = null;
  Environment env = new Environment();
  env.setProviderUrl(url);
  env.setSecurityPrincipal(userName);
  env.setSecurityCredentials(password);
  try {
       Context ctx = env.getInitialContext();
       home = (MBeanHome) ctx.lookup(MBeanHome.ADMIN_JNDI_NAME);
  } catch (NamingException e) {
       e.printStackTrace();
  rmbs = home.getMBeanServer();
  WLListener listener = new WLListener();
  WebLogicObjectName mbeanName = new WebLogicObjectName("examplesServer", "Server", "examples");
  rmbs.addNotificationListener(mbeanName, listener, null, null);This seems to work fine, I do not get any error messages. As you can see I'm using the server started through the examples, and I'm adding a notification listener to the ServerMBean.
  My notification listener code is as so:
  public void handleNotification(Notification notification, Object arg1) {
       AttributeChangeNotification changedAttrib = (AttributeChangeNotification) notification;
       try {
            System.out.println("Changed value from: " + changedAttrib.getOldValue() + " to " + changedAttrib.getNewValue());
       } catch (Exception ex) {
            ex.printStackTrace();
  public boolean isNotificationEnabled(Notification arg0) {
       return true;
  }Only when a notification happens and I call getOldValue() I get:
  weblogic.security.service.NotYetInitializedException: [Security:090392]SecurityServiceManager not yet initialized.
       at weblogic.security.service.SecurityServiceManagerDelegateImpl.getSecurityService(SecurityServiceManagerDelegateImpl.java:156)
       at weblogic.security.service.SecurityServiceManager.getSecurityService(SecurityServiceManager.java:175)
       at weblogic.management.internal.SecurityHelper.getRoleManager(SecurityHelper.java:402)
       at weblogic.management.internal.SecurityHelper.access$100(SecurityHelper.java:54)
       at weblogic.management.internal.SecurityHelper$IsAccessAllowedPrivilegeAction.run(SecurityHelper.java:493)
       at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
       at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:118)
       at weblogic.management.internal.SecurityHelper.isAccessAllowed(SecurityHelper.java:393)
       at weblogic.management.internal.AttributeChangeNotification.getOldValue(AttributeChangeNotification.java:136)
       at com.xxxx.password.PasswordBme$WLListener.handleNotification(PasswordBme.java:76)
       at com.xxxx.password.PasswordBme$WLListener_WLSkel.invoke(Unknown Source)
       at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:477)
       at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:420)
       at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
       at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:144)
       at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:415)
       at weblogic.rmi.internal.BasicExecuteRequest.execute(BasicExecuteRequest.java:30)
       at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:219)
       at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:178)Is there a step I'm missing out? The entry for this message in the documentation suggests calling BEA support.

• Forgot weblogic admin server password and not able to run to reset it.

  Hi Folks,
  I forgot my Weblogic 11g server admin account details and now I'm unable to reset the password as well. I tried following the steps mentioned in ORACLE-BASE - Reset the AdminServer Password in WebLogic 11g and 12c but I couldn't execute the below mentioned java command as the required class file is not identifible. could you please assist.
  java weblogic.security.utils.AdminAccount newAdmin newPassword .
  Thanks
  Vachow@

  Hi,
  To reset the password,please do the following:
  1.- Make sure Weblogic Server instance is stopped.
  2.- Make a backup of the LDAP folder of the admin server as well as managed servers (you may rename those folders).
  3. Set your environment variables by running setDomainEnv.sh (UNIX) or setDomainEnv.cmd (Windows). For UNIX only environments do as follows:
  . ./setDomainEnv.sh (Notice the space between the dots)
  4. cd to security directory in your instance.
  (eg: $WL_HOME/user_projects/domains/base_domain/security)
  5. Run:
  java weblogic.security.utils.AdminAccount admin_user admin_pass .
  Remember to change “admin_user” and “admin_pass” to your need.
  Also, don’t forget the period “.” at the end of the above command, it is required.
  6. After running the command, the file “DefaultAuthenticatorInit.ldift” will get updated.
  7. Delete the following file from “ldap” folder:
  cd WL_HOME/user_projects/domains/base_domain/servers/AdminServer/data/ldap
  rm DefaultAuthenticatormyrealmInit.initialized
  8. Go to folder DOMAIN_HOME/servers/AdminServer/security
  9. Edit the boot.properties file and change the password to the value already used on step 5. Do this for all the servers in the domain.
  10. Start Weblogic Server (Weblogic Server will encrypt the password for you).