Weblogic Server: Resetting the domain server admin password

-

Oh SNAP! I have forgotten my Admin Server password for the organisations WebLogic domain.
  • Have you ever forgot the password of WebLogic domain? 
  • Have you been in a situation when you took over administration of the server and discovered the wrong password was handed over to you by the previous administrator who is no longer accessible?
These are recurring issues experienced by Administrators. Additionally, password change can be regularly enforced by the organisations security policy forcing the admin to perform this task frequently
So how do you go about achieving this?
In this post I will be discussing how to reset the WebLogic password. This tutorial will focus on achieving this through the command line.

This post will particularly focus on Windows.
Click here to see the tutorial on Unix

Step 1: Navigate to your preferred Domain
In this post I will be using the domain called "base_domain" in the following directory stated below:

C:\Oracle\Middleware\user_projects\domains\base_domain>


Step 2 : Set the Domain Environment
Change directory to to the bin directory and run the setDomainEnv.cmd script as seen below
C:\Oracle\Middleware\user_projects\domains\base_domain>cd bin
C:\Oracle\Middleware\user_projects\domains\base_domain\bin>setDomainEnv.cmd

Step 3: Navigate to Security Directory and rename the DefaultAuthenticatorInit.ldift file
C:\Oracle\Middleware\user_projects\domains\base_domain>cd security
C:\Oracle\Middleware\user_projects\domains\base_domain\security

in this folder there are the following files:
DefaultAuthenticatorInit.ldift
DefaultRoleMapperInit.ldift
SerializedSystemIni.dat
XACMLRoleMapperInit.ldift

We will be renaming the DefaultAuthenticatorInit.ldift file.(renaming it is a form of backup as the system will recreate a new file in the process of resetting the password)
I will be renaming my file to DefaultAuthenticatorInit_bkp.ldift

Run the following command 
C:\Oracle\Middleware\user_projects\domains\base_domain\security>rename DefaultAuthenticatorInit.ldift DefaultAuthenticatorInit_bkp.ldift

Step 5 : Execute the below command :

C:\Oracle\Middleware\user_projects\domains\base_domai\security> java weblogic.security.utils.AdminAccount weblogic tayo12345 .

The DOT (.) at the end of the command, notifies that it will reset the password in current directory, the above command will re-create the file DefaultAuthenticatorInit.ldift as seen in the directory below.

Step 6 :  Go to Security Folder of Admin Server
At this stage we will now go to the boot properties and modify the password in plain text.
In the command prompt go to the boot.properties file its in the follwoing location:
C:\Oracle\Middleware\user_projects\domains\base_domain\servers\AdminServer\security\boot.properties
Edit the boot.properties file as below and save it.
username=weblogic
password=tayo12345

When weblogic is started it will re-hash the plain text.

Step 7. Navigate to following Directory and Rename LDAP Directory 
As earlier said the essence of renaming these directory is just to serve as a backup if the whole process should fail. During weblogic startup a new LDAP directory will be recreated.

Step 8 :Restart the Server.
Use the folowong script below:
C:\Oracle\Middleware\user_projects\domains\base_domain\bin>startWebLogic.cmd



Step 9: Login to Weblogic server using the url 
http://:7001/console


Thank you for viewing this post. I hope it was helpful

Comments

Post a Comment

Popular posts from this blog

Auditing Virtualization

-
Image
Virtualization is the process of creating virtual, representation of an entity, such as virtual applications, servers, storage and networks. It is the single most effective way to reduce IT expenses by reducing hardware footprint while boosting efficiency and agility for all size businesses. However good as it is, virtualization can create a single point of failure if poor implementation introduced a security flaw to the system. In this post I will be sharing with you how to audit virtualization.
Read more

How to Identify if the capacity of your FLASH storage device is genuine or counterfeit

-
Image
Have you at some time purchased a flash drive  or memory card that always stored corrupt data? You paid for a 64gig memory card and all you stored in it is simply just got corrupted. I have been a victim several times even with reputable retailers. These counterfeit flash storages are low capacity in nature, devices that have been maliciously altered so that they appear to have much more capacity than its original. An example is the 64 gig memory card I purchased which ended up having actual capacity of 2gig. So I actually paid for 2gig. Now I didn't get to know this on time because I actually copied a video file inside it as a test which checked out fine. The video file size was 1.5gb. I was able to play the video with no issue of corruption. Thus I "Assumed" the flash was genuine. Boy was I wrong. Later in the week I decided to do a major backup of my mobile phone since I was purchasing another one. After the backup, I formatted ...
Read more

Address Resolution Protocol (ARP): Understanding the basics

-
Image
Address resolution Protocol or ARP for short is basically used to resolve an IP address to a MAC address. A MAC address is a unique identifier for any device. And since we are talking networking today, The mac address we will be concentration on is that of a network device. Its important to note that, no two device can have the same mac address. Whenever a network device needs to communicate with another network device in a Local Area Network, it needs the MAC address of that device. This is where ARP comes to play. Lets take a look at the scenario bellow to clearly understand this concept: 1. There are 2 computers say A and B on the network. 2. They have both been assigned an IP address as seen below:        A: 192.168.0.1        B: 192.168.0.2 3. Computer A needs to communicate with computer B. 4. It looks at a list for the IP address to see if it has a corresponding MAC address. This list is called an ARP Cache. 5. If the en...
Read more