• Post Reply Bookmark Topic Watch Topic
  • New Topic
programming forums Java Mobile Certification Databases Caching Books Engineering Micro Controllers OS Languages Paradigms IDEs Build Tools Frameworks Application Servers Open Source This Site Careers Other Pie Elite all forums
this forum made possible by our volunteer staff, including ...
Marshals:
  • Campbell Ritchie
  • Jeanne Boyarsky
  • Ron McLeod
  • Paul Clapham
  • Liutauras Vilda
Sheriffs:
  • paul wheaton
  • Rob Spoor
  • Devaka Cooray
Saloon Keepers:
  • Stephan van Hulst
  • Tim Holloway
  • Carey Brown
  • Frits Walraven
  • Tim Moores
Bartenders:
  • Mikalai Zaikin

WebSphere Security Settings

 
Ranch Hand
Posts: 121
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
I need to enable security on WSAD 5.1.2 via the Admin Consol.

I take it I first need to 'log-in' via one of the user registries? If I am not on one of these registries, how can I be included in them? Or, do I need the userId and Password of the fellow who installed the app server to do any of this?

Currently, when I try and set Global Security I get the error message
'Validation failed for user xyz. Please try again....'

Any help would be most appreciated.

As
 
Greenhorn
Posts: 29
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator

Originally posted by Alana Sparx:
I need to enable security on WSAD 5.1.2 via the Admin Consol.

I take it I first need to 'log-in' via one of the user registries? If I am not on one of these registries, how can I be included in them? Or, do I need the userId and Password of the fellow who installed the app server to do any of this?

Currently, when I try and set Global Security I get the error message
'Validation failed for user xyz. Please try again....'

Any help would be most appreciated.

As





Sounds like the credentials you are passing are not in the User Registry. Tell you admin that you need your credentials added to the user registry. If you don't really have an admin then you need to figure out what type of user registry you are using and add your credentials; whether it be Local OS, LDAP, etc.

To figure out the security settings you could temporarily goto <WAS ROOT>/config/cells/<CELL NAME>/security.xml and search for the first occurence of enabled and set it to false. Save the file and bounce all servers. Global security will now be turned off and you can check what type of user regiestry you are using.
 
Alana Sparx
Ranch Hand
Posts: 121
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator
Thanks foe the reply, Ryan.

Global Security is currently turned off - what I'm trying to do is switch it on, but the original username/passwords have been lost.

So, I need to
a) figure out which user registry is being used - if it on the localOS, can i easily get a look at this (I'm expecting a guffaw followed by a strong !NO!' to this, but hey, I'm desperate). If its LDAP, i suppose I'm in a bit of a pickle?

b) one I have the log in details I can 'log-in' to the appropriate registry, and then have the permissions to tamper with the as yet non-existent security setting?

Any ideas where the localOS registry might be? Or are we talking lengths of string here?

Thanks again
 
Ryan Zezeski
Greenhorn
Posts: 29
  • Mark post as helpful
  • send pies
    Number of slices to send:
    Optional 'thank-you' note:
  • Quote
  • Report post to moderator

Originally posted by Alana Sparx:
Thanks foe the reply, Ryan.

Global Security is currently turned off - what I'm trying to do is switch it on, but the original username/passwords have been lost.

So, I need to
a) figure out which user registry is being used - if it on the localOS, can i easily get a look at this (I'm expecting a guffaw followed by a strong !NO!' to this, but hey, I'm desperate). If its LDAP, i suppose I'm in a bit of a pickle?

b) one I have the log in details I can 'log-in' to the appropriate registry, and then have the permissions to tamper with the as yet non-existent security setting?

Any ideas where the localOS registry might be? Or are we talking lengths of string here?

Thanks again



I'm having a hard time understanding everything you saying, but it seems to me you either:

a) Have an external LDAP user registry somewhere and forgot or don't know any of the credentials in it. If so I would ask your admin or the previous person to setup WAS security.

b) WAS security has not been setup before and you have no user registry and are trying to figure out what to do.



LocalOS simply uses your Operating System user registry. I personally have only used a Sun ONE LDAP registry. So if the machine you have WAS installed on has a user called Joe with a password of "Password" you should be able to use that username/password, and WAS will check credentials against the OS registry.

As for LDAP there are a slew of LDAP servers WAS supports out of the box. I personally have only used Sun ONE and don't remember setting it up. However I made a user called "websphere" and used that as my login user.

You can also setup custom registries but I have no clue how to do that.

Once again, if you actually already have a user registry created somewhere, ans just forgot the credentials then you need to ask you admin or whoever created it. If you don't have a registry at all then you need to create one.

IBM info-ceter documentation for Local OS:
http://publib.boulder.ibm.com/infocenter/wasinfo/v5r1//topic/com.ibm.websphere.base.doc/info/aes/ae/csec_localos.html

IBM info-center documentation for LDAP:
http://publib.boulder.ibm.com/infocenter/wasinfo/v5r1//topic/com.ibm.websphere.base.doc/info/aes/ae/csec_ldap.html
 
reply
    Bookmark Topic Watch Topic
  • New Topic