Configure WAS to Stop asking for Password during Shutdown

by Chandan Kumar | July 31, 2016 | WebSphere

23shares

Are you annoyed with credential prompt whenever you shut down the DMGR, Nodeagent or JVM?

Well, not anymore, because you are going to learn how to configure IBM WebSphere Application Server to stop prompting for credential every time.

In default WebSphere installation when security is enabled, you will get a credential prompt as shown below at every shutdown.

The following procedure will help you to configure WAS in such a way that you don’t get a credential prompt anymore during a shutdown.

Note: this must be done at profile levels like DMGR or node agent and assume you are using default connection type (SOAP). So ready?

Login into WAS server
Go to $PROFILE_HOMEproperties
Take a backup of soap.client.props. Or you may also take complete WebSphere configuration backup using backupconfig.sh as explained here.
Modify the soap.client.props file using vi and ensure following three changes.

First– change false to true for SOAP security

com.ibm.SOAP.securityEnabled=true

Second & third – enter user & password, which as administrator role rights.

com.ibm.SOAP.loginUserid=chandan #change this with your environment admin
com.ibm.SOAP.loginPassword=chandan # changed this

So here is how file should look like

Test it by restarting respective Node, DMGR or JVM.

Here is useful tip

if you notice in above file you can see user and password as plain text, which you don’t want to in a production environment. It’s recommended to encrypt the password and here is how you can do it.

Go to $PROFILE_HOMEbin folder
Execute the following command to encrypt the password

./PropFilePasswordEncoder.sh $PROFILE_HOME/properties/soap.client.props com.ibm.SOAP.loginPassword

Example:-

[[email protected] bin]# ./PropFilePasswordEncoder.sh /opt/IBM/WebSphere/AppServer/profiles/Dmgr01/properties/soap.client.props com.ibm.SOAP.loginPassword
[[email protected] bin]#

Let’s take a look at password field now.

com.ibm.SOAP.loginPassword={xor}PDc+MTs+MQ==

So you can see it’s encrypted which is much better, isn’t it?

BTW, do you know you can decrypt the XOR password?

23shares

About Chandan Kumar

Since founded Geekflare, I've helped millions of professional through my articles and tools.
Let's connect on Twitter or LinkedIn.

Comments

Srinivas says

October 26, 2016 at 2:33 pm

How can we decrypt it if we forgot this password.

Reply
- Chandan Kumar says
  
  October 27, 2016 at 5:44 pm
  
  Hello Srinivas, you can use XOR decrypt online tool as explained here – http://geekflare.com/websphere-useful-tools/
  
  Reply

Power Your Business

Choosing the right product and service is essential to run an online business. Here are some of the tools have helped Geekflare to succeed where it is today.

Netsparker

Netsparker uses the Proof-Based Scanning™ to automatically verify the identified vulnerabilities with a proof of exploit, thus making it possible to scan thousands of web applications and generate actionable results within just hours.

Try Netsparker

Google Cloud

Probably the best cloud platform to host small to enterprise applications. Leverage Google's low latency network infrastructure to deliver content faster at lower cost.

Compute, Analytics, Storage, AI, Networking and much more.

Try GCP

Genesis

Genesis is a powerful WordPress framework to build a unique site. Powering more than 600,000 websites and the most popular theme used in top 10k sites.

Genesis is light-weight, and SEO-optimised theme.

Get Genesis

+ 10 More Awesome Resources

Additional menu

Configure WAS to Stop asking for Password during Shutdown

Related Articles

About Chandan Kumar

Reader Interactions

Comments

Leave a Reply Cancel reply

Footer

Power Your Business

Netsparker

Google Cloud

Genesis