Changing the password for a repository under a federated repositories configuration

Passwords allow security control over the repositories under a federated repositories configuration. As part of managing the realm in a federated repository configuration, one of the optional tasks you can perform is to change the password of an individual repository that is under a federated repositories configuration.

• Changing the password for a repository using the dynamic updateIdMgrLDAPBindInfo command
  Use the following steps to change the Lightweight Directory Access Protocol (LDAP) bind distinguished name (DN) or bind password of an LDAP repository.

  From a wsadmin prompt, you can enter the following command to display a list of arguments for the updateIdMgrLDAPBindInfo command: $AdminTask help updateIdMgrLDAPBindInfo

  1. Start the wsadmin command-line utility. The wsadmin command is found in theapp_server_root/bin directory.
     The WebSphere Application Server and wsadmin must remaining running.
  2. Use an LDAP tool to change the password of the LDAP repository.
     Some LDAP repositories require a stop and start of the LDAP server to change the password.
  3. From the wsadmin prompt, enter the updateIdMgrLDAPBindInfo command to update the LDAP password under the federated repository.
     The change is also reflected in the wimconfig.xml file.
• Changing the password for a repository using the updateIdMgrDBRepository command
  1. Start the wsadmin command-line utility. The wsadmin command is found in the app_server_root/bin directory.
     The wsadmin command session must remain running. If WebSphere Application Server is not started, you need to open a wsadmin command session in local mode. wsadmin -conntype none
     Avoid trouble: If you are starting the wsadmin command session in local mode, you must ensure that the location of the database driver is specified in the class path using the -wsadmin_classpath option. For information on using this option, see the topic, wsadmin scripting tool in the WebSphere Application Server documentation.
  2. Log in to the Administrative Console for WebSphere Application Server.
  3. Change the password for the repository.
  4. From the Administrative Console, change the data source (J2C) password.
     You access the proper console page by clicking Resources > JDBC > Data sources >data_source> JAAS - J2C authentication data.
  5. From the Administrative Console, save your changes to the master configuration.
  6. From the wsadmin prompt, use the updateIdMgrDBRepository command to update the password in the wimconfig.xml file.
  7. From the wsadmin prompt, save your changes to the master configuration.
     The following command is used to save the master configuration: $AdminConfig save.
  8. Restart the WebSphere Application Server.
• Changing the password for a repository using the setIdMgrPropertyExtensionRepository command
  1. Start the wsadmin command-line utility. The wsadmin command is found in theapp_server_root/bin directory.
     The wsadmin command session must remain running. If WebSphere Application Server is not started, you need to open a wsadmin command session in local mode.

     wsadmin -conntype none

  2. Log in to the Administrative Console for WebSphere Application Server.
  3. Change the password for the repository.
  4. From the Administrative Console, change the data source (J2C) password.
     You access the proper console page by clicking Resources > JDBC > Data sources > data_source > JAAS - J2C authentication data.
  5. From the Administrative Console, save your changes to the master configuration.
  6. From the wsadmin prompt, use the setIdMgrPropertyExtensionRepository command to update the password in the wimconfig.xml file.
  7. From the wsadmin prompt, save your changes to the master configuration.
     The following command is used to save the master configuration: $AdminConfig save.
  8. Restart the WebSphere Application Server.
• Changing the password for a repository using the setIdMgrEntryMappingRepository command
  1. Start the wsadmin command-line utility. The wsadmin command is found in theapp_server_root/bin directory.
     The wsadmin command session must remain running. If WebSphere Application Server is not started, you need to open a wsadmin command session in local mode.

     wsadmin -conntype none

  2. Log in to the Administrative Console for WebSphere Application Server.
  3. Change the password for the repository.
  4. From the Administrative Console, change the data source (J2C) password.
     You access the proper console page by clicking Resources > JDBC > Data sources >data_source > JAAS - J2C authentication data.
  5. From the Administrative Console, save your changes to the master configuration.
  6. From the wsadmin prompt, use the setIdMgrEntryMappingRepository command to update the password in the wimconfig.xml file.
  7. From the wsadmin prompt, save your changes to the master configuration.
     The following command is used to save the master configuration: $AdminConfig save.
  8. Restart the WebSphere Application Server.
• Changing the password for a repository using the updateIdMgrLDAPServer command
  1. Start the wsadmin command-line utility. The wsadmin command is found in theapp_server_root/bin directory.
     The wsadmin command session must remain running. If WebSphere Application Server is not started, you need to open a wsadmin command session in local mode.

     wsadmin -conntype none

  2. Change the password for the repository.
  3. From the wsadmin prompt, use the updateIdMgrLDAPServer command to update the password in the wimconfig.xml file.
  4. From the wsadmin prompt, save your changes to the master configuration.
     The following command is used to save the master configuration: $AdminConfig save.
  5. Restart the WebSphere Application Server.