Change the password for a repository under a federated repositories configuration

Passwords allow security control over the repositories under a federated repositories configuration. As part of managing the realm in federated repository, one of the optional tasks we can perform is to change the password of an individual repository that is under a federated repositories configuration.

Before changing the password for the repository configured under federated repositories, ensure that the WAS is running and the target repository for the password change is configured under the federated repositories configuration. In a WAS Network Deployment environment, you must complete these steps on the deployment manager.

• Change the password for a repository using the dynamic updateIdMgrLDAPBindInfo command Use the following steps to change the Lightweight Directory Access Protocol (LDAP) bind distinguished name (DN) or bind password of an LDAP repository.

  From a wsadmin prompt, we can enter the following command to display a list of arguments for the updateIdMgrLDAPBindInfo command: $AdminTask help updateIdMgrLDAPBindInfo

  1. Start wsadmin-line utility. The wsadmin command is found in theapp_server_root/bin directory. The WebSphere Application Server and wsadmin must remaining running.

  2. Use an LDAP tool to change the password of the LDAP repository. Some LDAP repositories require a stop and start of the LDAP server to change the password.

  3. From the wsadmin prompt, enter the updateIdMgrLDAPBindInfo command to update the LDAP password under the federated repository. The change is also reflected in the wimconfig.xml file.

• Change the password for a repository using the updateIdMgrDBRepository command

  1. Start wsadmin-line utility. The wsadmin command is found in the app_server_root/bin directory. The wsadmin command session must remain running. If WAS is not started, we need to open a wsadmin command session in local mode. wsadmin -conntype none

     Avoid trouble: If we are starting wsadmin session in local mode, you must ensure that the location of the database driver is specified in the class path using the -wsadmin_classpath option. For information on using this option, see the topic, wsadmin scripting tool in the WAS information center.gotcha

  2. Log in to the Administrative Console for WebSphere Application Server.

  3. Change the password for the repository.

  4. From the Administrative Console, change the data source (J2C) password. You access the proper console page by clicking Resources > JDBC > Data sources >data_source> JAAS - J2C authentication data.

  5. From the Administrative Console, save the changes to the master configuration.

  6. From the wsadmin prompt, use the updateIdMgrDBRepository command to update the password in the wimconfig.xml file.

  7. From the wsadmin prompt, save the changes to the master configuration. The following command is used to save the master configuration: $AdminConfig save.

  8. Restart the WAS.

• Change the password for a repository using the setIdMgrPropertyExtensionRepository command

  1. Start wsadmin-line utility. The wsadmin command is found in theapp_server_root/bin directory. The wsadmin command session must remain running. If WAS is not started, we need to open a wsadmin command session in local mode.

     wsadmin -conntype none

  2. Log in to the Administrative Console for WebSphere Application Server.

  3. Change the password for the repository.

  4. From the Administrative Console, change the data source (J2C) password. You access the proper console page by clicking Resources > JDBC > Data sources > data_source > JAAS - J2C authentication data.

  5. From the Administrative Console, save the changes to the master configuration.

  6. From the wsadmin prompt, use the setIdMgrPropertyExtensionRepository command to update the password in the wimconfig.xml file.

  7. From the wsadmin prompt, save the changes to the master configuration. The following command is used to save the master configuration: $AdminConfig save.

  8. Restart the WAS.

• Change the password for a repository using the setIdMgrEntryMappingRepository command

  1. Start wsadmin-line utility. The wsadmin command is found in theapp_server_root/bin directory. The wsadmin command session must remain running. If WAS is not started, we need to open a wsadmin command session in local mode.

     wsadmin -conntype none

  2. Log in to the Administrative Console for WebSphere Application Server.

  3. Change the password for the repository.

  4. From the Administrative Console, change the data source (J2C) password. You access the proper console page by clicking Resources > JDBC > Data sources >data_source > JAAS - J2C authentication data.

  5. From the Administrative Console, save the changes to the master configuration.

  6. From the wsadmin prompt, use the setIdMgrEntryMappingRepository command to update the password in the wimconfig.xml file.

  7. From the wsadmin prompt, save the changes to the master configuration. The following command is used to save the master configuration: $AdminConfig save.

  8. Restart the WAS.

• Change the password for a repository using the updateIdMgrLDAPServer command

  1. Start wsadmin-line utility. The wsadmin command is found in theapp_server_root/bin directory. The wsadmin command session must remain running. If WAS is not started, we need to open a wsadmin command session in local mode.

     wsadmin -conntype none

  2. Change the password for the repository.

  3. From the wsadmin prompt, use the updateIdMgrLDAPServer command to update the password in the wimconfig.xml file.

  4. From the wsadmin prompt, save the changes to the master configuration. The following command is used to save the master configuration: $AdminConfig save.

  5. Restart the WAS.

Results

The password for the repository has been changed.