Passwords allow security control over the repositories under a federated repositories
configuration. As part of managing the realm in a federated repository configuration, one of the
optional tasks you can perform is to change the password of an individual repository that is under a
federated repositories configuration.
Before you begin
Before you change the password for the repository that is configured under federated
repositories, ensure that the WebSphere® Application Server is running and the
target repository for the password change is configured under the federated repositories
configuration. In a WebSphere Application Server Network Deployment
environment, you must complete these steps on the deployment manager.
Procedure
- Changing the password for a repository using the dynamic updateIdMgrLDAPBindInfo
command
Use the following steps to change the Lightweight Directory Access Protocol (LDAP) bind
distinguished name (DN) or bind password of an LDAP repository.
From a wsadmin prompt, you
can enter the following command to display a list of arguments for the
updateIdMgrLDAPBindInfo command:
$AdminTask help updateIdMgrLDAPBindInfo
- Start the wsadmin command-line utility. The wsadmin command is found in theapp_server_root/bin
directory.
The WebSphere Application Server and wsadmin must remaining
running.
- Use an LDAP tool to change the password of the LDAP repository.
Some LDAP
repositories require a stop and start of the LDAP server to change the password.
- From the wsadmin prompt, enter the updateIdMgrLDAPBindInfo command to
update the LDAP password under the federated repository.
The change is also reflected in
the wimconfig.xml file.
- Changing the password for a repository using the updateIdMgrDBRepository
command
- Start the wsadmin command-line utility. The wsadmin command is found in the app_server_root/bin
directory.
The wsadmin command session must remain running. If WebSphere Application Server is not started, you need to open a wsadmin command
session in local mode. wsadmin -conntype none
Avoid trouble: If you are starting the wsadmin command session in
local mode, you must ensure that the location of the database driver is specified in the class path
using the -wsadmin_classpath option. For information on using this option, see the topic,
wsadmin scripting tool in the WebSphere Application Server documentation.
- Log in to the Administrative Console for WebSphere Application Server.
- Change the password for the repository.
- From the Administrative Console, change the data source (J2C) password.
You
access the proper console page by clicking Resources > JDBC > Data sources
>data_source> JAAS - J2C authentication data.
- From the Administrative Console, save your changes to the master
configuration.
- From the wsadmin prompt, use the updateIdMgrDBRepository command to update the
password in the wimconfig.xml file.
- From the wsadmin prompt, save your changes to the master
configuration.
The following command is used to save the master configuration:
$AdminConfig save.
- Restart the WebSphere Application Server.
- Changing the password for a repository using the
setIdMgrPropertyExtensionRepository command
- Start the wsadmin command-line utility. The wsadmin command is found in theapp_server_root/bin
directory.
The wsadmin command session must remain running. If
WebSphere Application Server is not started, you need to open a wsadmin command
session in local mode.
wsadmin -conntype none
- Log in to the Administrative Console for WebSphere Application Server.
- Change the password for the repository.
- From the Administrative Console, change the data source (J2C) password.
You
access the proper console page by clicking Resources > JDBC > Data sources >
data_source > JAAS - J2C authentication data.
- From the Administrative Console, save your changes to the master
configuration.
- From the wsadmin prompt, use the setIdMgrPropertyExtensionRepository
command to update the password in the wimconfig.xml file.
- From the wsadmin prompt, save your changes to the master
configuration.
The following command is used to save the master configuration:
$AdminConfig save.
- Restart the WebSphere Application Server.
- Changing the password for a repository using the setIdMgrEntryMappingRepository
command
- Start the wsadmin command-line utility. The wsadmin command is found in theapp_server_root/bin
directory.
The wsadmin command session must remain running. If
WebSphere Application Server is not started, you need to open a wsadmin command
session in local mode.
wsadmin -conntype none
- Log in to the Administrative Console for WebSphere Application Server.
- Change the password for the repository.
- From the Administrative Console, change the data source (J2C) password.
You
access the proper console page by clicking Resources > JDBC > Data sources
>data_source > JAAS - J2C authentication data.
- From the Administrative Console, save your changes to the master
configuration.
- From the wsadmin prompt, use the setIdMgrEntryMappingRepository command
to update the password in the wimconfig.xml file.
- From the wsadmin prompt, save your changes to the master
configuration.
The following command is used to save the master configuration:
$AdminConfig save.
- Restart the WebSphere Application Server.
- Changing the password for a repository using the updateIdMgrLDAPServer
command
- Start the wsadmin command-line utility. The wsadmin command is found in theapp_server_root/bin
directory.
The wsadmin command session must remain running. If
WebSphere Application Server is not started, you need to open a wsadmin command
session in local mode.
wsadmin -conntype none
- Change the password for the repository.
- From the wsadmin prompt, use the updateIdMgrLDAPServer command to update
the password in the wimconfig.xml file.
- From the wsadmin prompt, save your changes to the master
configuration.
The following command is used to save the master configuration:
$AdminConfig save.
- Restart the WebSphere Application Server.
Results
The password for the repository has been changed.