By default, you need to supply the ID and password when starting up/shutting down the deployment manager, node or application server. Example of the command as below
Deployment Manager/
Node/
Application Server/
The steps to encrypt the password and ID is as follows.
Insert the ID and password in clear text into the SOAP properties file at /# grep SOAP.login soap.client.props | grep -v "#"
com.ibm.SOAP.loginUserid=wasadm
com.ibm.SOAP.loginPassword=wasadm
com.ibm.SOAP.loginSource=prompt
We use the IBM provided script to encode the password./
Taking a look at the same property file again, the password is now encrypted.# grep SOAP.login soap.client.props | grep -v "#"
com.ibm.SOAP.loginUserid=wasadm
com.ibm.SOAP.loginPassword={xor}Es4zPjwS
com.ibm.SOAP.loginSource=prompt
Now, we can start up websphere and shut down without using the password.su wasadm -c "/
su wasadm -c "/
su wasadm -c "/
su wasadm -c "/
su wasadm -c "/
su wasadm -c "/
end.
======================
Some trival.
How come IBM prefers to use XOR instead of some stronger algorithm like how weblogic uses 3DES? XOR is good enough only to prevent casual snooping.
Someone demonstrated that with a online decoder
http://www.poweredbywebsphere.com/decoder.html
Friday, July 06, 2012
Encrypting the ID and Password for Websphere Application Server
Labels:
Websphere Application Server
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment