Change passwords

 

+
Search Tips   |   Advanced Search

 

---

1. Change the WebSphere Portal administrator password
2. Change the WAS administrator password
3. Change the deployment credentials
4. Change the database administrator password
5. Replacing the WAS administrator user ID
6. Change the Member Manager password
7. Change the LDAP bind password
8. Change the WMMSystemID

 

Change the WebSphere Portal administrator password

1. Log in to WebSphere Portal as the portal administrator.

2. Click Edit my profile.

3. Change your password in the appropriate box.

4. Click Continue.

You can change the WebSphere Portal Administrator password using an LDAP editor.

The WebSphere Portal configuration tasks that enable WebSphere security automatically set the Security Cache Timeout to a value specified in the wpconfig.properties file. Old passwords are stored in cache for this amount of time. The default value is 600 seconds.

 

Change the WAS administrator password

You can change the password for the WAS administrator user ID via the WAS Administrative Console. See Change the deployment credentials after you change the password.

Follow these steps to change the WAS administrator password:

These steps are also required if you are using the Member Manager user registry.

1. Encrypt the new password...

   cd <wp_root>/config/work/wmm/bin
   ./wmm_encrypt.sh <new_password>

   The script returns a value for the ASCII encrypted string.

2. Choose one of the following steps:

   • If you have a Base installation, edit...

     <wp_root>/wmm/wmmWASAdmin.xml

   • If you have a Network Deployment, refer to the <Cluster section> Change Member Manager properties description.

3. Copy the value from the ASCII encrypted string and paste it in the logonPassword field of the wmmWASAdmin.xml file.

4. Restart WebSphere Portal.

You can also change the WAS administrator password using the following procedures.

 

Change the WAS administrator password using WebSphere Portal

Follow these steps to change the WAS administrator password using WebSphere Portal:

1. Confirm that the WAS Administrative Server and Administrative Console are running.

2. Log in to the WAS Administrative Console as the WAS administrator.

3. Log in to WebSphere Portal as the WAS administrator and select Edit Profile.

4. Type a new password and click Continue.

5. In the WAS Administrative Console do one of the following, depending on the type of security installation:

   • LDAP:

     Security | User Registries | LDAP

   • Custom User Registry:

     Security | User Registries | Custom

6. Change Server User Password to the new value and save the changes.

7. Restart the WAS.

The WebSphere Portal configuration tasks that enable WebSphere security automatically set the Security Cache Timeout to a value specified in the wpconfig.properties file. Old passwords are stored in cache for this amount of time. The default value is 600 seconds.

 

Change the WAS administrator password in LDAP

These steps are valid for changing all passwords in LDAP.

Follow these steps to change the WAS administrator password in LDAP if you are using IBM Directory Server. If you are using a different LDAP server, refer to the product documentation for information about changing passwords.

1. Log in to the IBM Tivoli Directory Server Web Administration Tool.

2. Click Directory management | manage entries.

3. Select the o=wps RDN and click Expand.

4. Select cn=users and click Expand.

5. Select the WAS administrator user and click Edit Attributes.

6. Click Other attributes.

7. Enter the new password in the userPassword field.

8. Click OK.

9. Exit the IBM Tivoli Directory Server Web Administration Tool.

10. Log in to the WAS Administrative Console.

11. Click...

    Security | User Registries | LDAP

12. Type the new WAS administrator password in the Server User Password field and click OK.

13. In the WAS administrative console, select...

    Security | Global Security | Reset

 

Change the deployment credentials

The deployment credentials are required for portlet deployment. The Credential Vault stores the userid and password in the deployment.user system vault slot. You can change the userid and password via the Credential Vault portlet or the XML Configuration Interface. See Credential Vault and Credential Service for more information about credential vault.

 

Change the database administrator password

If you change the password for the database administrative user, update the password information in the WAS administrative console. See the WAS documentation for details about modifying database passwords.

 

Replacing the WAS administrator user ID

Follow these steps to replace the WAS administrator user ID:

1. Create a new user to replace the current WAS user via the Manage Users and Groups portlet.

2. In the WAS Administrative Console do one of the following depending on the type of security installation:

   • LDAP:

     Security | User Registries | LDAP

   • Custom User Registry:

     Security | User Registries | Custom

3. Replace the Security Server ID and Security Server Password with the new user account information. For the ID, retain the fully qualified server ID.

4. Restart WAS.

5. See Change the deployment credentials

These steps are also required if you are using the Member Manager user registry.

1. Encrypt the new password:

   cd <wp_root>/config/work/wmm/bin
   ./wmm_encrypt.sh <new_password>

   The script returns a value for the ASCII encrypted string.

2. Choose one of the following steps:

   • If you have a Base installation, edit...

     <wp_root>/wmm/wmmWASAdmin.xml

   • If you have a Network Deployment, refer to the <Cluster section> Change Member Manager properties description.

3. Copy the value from the ASCII encrypted string and paste it in the logonPassword field of the wmmWASAdmin.xml file.

4. Adapt the admin logon and uniqueUserid fields to the distinguished name of the new user.

5. Restart WebSphere Portal.

If you use an external security manager such as Tivoli Access Manager, manually remove the old administrator user ID from the external security manager.

 

Change the Member Manager repository administrator password

When you run the appropriate configuration tasks to enable security, WebSphere Portal encrypts your database and/or LDAP administrative passwords and stores them in...

<wp_root>/wmm/wmm.xml

If you change the database password, update the datasource information using the WebSphere Administrative Console.

If you change the LDAP administrator password, update the wmm.xml file with the new encrypted password by following the instructions below.

Follow these steps to change the Member Manager repository administrator password:

1. From a command prompt, change to...

   <wp_root>/config/work/wmm/bin

2. Encrypt the new password by entering the appropriate command:

   ./wmm_encrypt.sh <new_password>

   The script returns a value for the ASCII encrypted string.

3. Edit...

   <wp_root>/wmm/wmm.xml

4. Copy the value from the ASCII encrypted string and paste it in the adminPassword field of wmm.xml.

 

Change the LDAP bind password

If you are using LDAP as your user registry and did not configure Member Manager custom user registry, adapt the LDAP bind userid via the WAS Administrative Console.

Follow these steps to change the LDAP bind password:

1. Confirm that the WAS Administrative Server and Administrative Console are running.

2. From the WAS Administrative Console, click

   Security | User Registries | LDAP

3. Change the Bind Password to the new value and save the change.

4. Restart WAS

 

Change the WMMSystemID

The WMMSystemID is used to access Member Manager.

 

Change the WMMSystemID password

The Credential Vault stores the userid and password in the system vault slot wmm.system.id.user. You can change the userid and password via the Credential Vault portlet or the XML Configuration Interface. See Credential Vault and Credential Service for more information about credential vault.

Important Note: change the WMMSystemID password first before making the change in your backend system; otherwise, WebSphere Portal will not start after changing the password.

 

Change the WMMSystemID

Follow these steps to change the WMMSystemID:

1. Edit...

   <wp_root>/config/wpconfig.properties

   and change the following keys...
   • WMMSystemID
   • WMMSystemIDPassword

2. Change the WMMSystemID:

   cd <wp_root>/config
   ./WPSconfig.sh change-wmm-system-id

The WMMSystemID user must be in your backend system before making the change; otherwise, WebSphere Portal will not start after changing the password.

 

See also

• Enable WebSphere Security

• Managing security

• Managing memberships

• Using logs

 

WebSphere is a trademark of the IBM Corporation in the United States, other countries, or both.

 

IBM is a trademark of the IBM Corporation in the United States, other countries, or both.

 

Tivoli is a trademark of the IBM Corporation in the United States, other countries, or both.