WebSphere Application Server & Liberty

 View Only

 About notes on changing the administrator password for WAS

Ken Iida's profile image
Ken Iida posted Wed November 13, 2024 10:47 PM

As an administrator I was required to change the WAS admin password periodically.

I know that in this case, I will have to change the configuration values ​​in files such as sas.client.props and soap.client.props, and encrypt the passwords in them.

Are there any other things I should be careful of besides these?

Joe Molina's profile image
Joe Molina posted Thu November 14, 2024 01:21 PM

if I understand your question, you have set up WAS to use some credential as it's PrimaryAdmin ID and now you need to change its password? or are you referring to the credential that runs WAS at the OS level. If the first, I suggest you check all of your *.props files make sure you re-encrypt them after changing. The change is disruptive so you will need to restart the cell and other JVMs. If it's the credential that runs the WAS process, if on AIX/Linux changing the password does not impact WAS because it does not save or cache the id's password. It should be trasnparent.

Ken Iida's profile image
Ken Iida posted Thu November 14, 2024 07:27 PM

Thanks .  I understand.

Gabriel Aberasturi's profile image
Gabriel Aberasturi posted Fri November 15, 2024 03:23 AM

Hello Ken,

Only one point about "encrypt" the passwords. The passwords are not encrypted they are ofuscated, if a get the files with passwords i'm able to know the passwords.

The security need to be in the access to configuraciones files too.

Hope this helps.

Regards

Ken Iida's profile image
Ken Iida posted Fri November 15, 2024 03:28 AM

Ok . I understand.