Resetting IBM WebSphere Portal 6.1 Security

Published by Rob on November 16th, 2009 - in WebSphere Portal

Situation 

You have received a WebSphere Portal VM that is setup to use security settings that don’t match your environment, and you need to go back to a simple config.

Running the recommended

1
ConfigEngine wp-restore-default-repository-configuration

does not work, because you have not got a working Portal environment in the first place, so it won’t start.

Overview of solution

Disable the security, then perform wp-restore-default-repository-configuration.

Files and Tools used

  • security.xml
  • ConfigEngine 
  • wkplc.properties

Whenever you see some code with bold and italics that is something for you to change to match your environment 

Details:

1) disable security.

This involves directly editing the security.xml file for your node. Note that your portal instance will NOT work when security is disabled, so performing this step will disable your portal instance. You should not think about doing this in a production environment (you probably shouldn’t be passing around Portal VM’s for production environments anyway). (The security.xml will live in the config for your node. I’ll assume you know where this is, if not use the find command on your operating system).

To disable security, edit the security.xml, and change the enabled attribute on the root security element to be false ie change enabled=”true” to enabled=”true”

2) start up your portal instance using whatever commands are appropriate.

On linux you might find

1
service portal start

useful.

3) Setup restore properties in your wkplc.properties file.

Profile/ConfigEngine/properties/wkplc.properties

# The realm name to be used. A realm with this name will be created.
restore.file.realm=New Unique Realm restore.file.delimiter=/

# Portal and WAS admin UID (short name) and password
restore.file.primaryAdminId=New Unique Admin ID 

restore.file.primaryAdminPassword=Password

# CN of portal admin group (short name)
restore.file.primaryPortalAdminGroup=adminGroupCN

4) run ConfigEngine.sh

Profile/ConfigEngine/ConfigEngine.sh wp-restore-default-repository-configuration

5) Turn on security (reversing step 1)

6) shutdown (or kill) portal

7) startup portal.

You should now see your portal server running without using LDAP.

Related posts:

  1. Automating Deployment to IBM WebSphere Portal
  2. Programmatic Check for WebSphere Portal iFixes and Fixpacks
  3. Reducing the Startup time for IBM WebSphere Portal
  4. Setting up Oracle XE to work with IBM WebSphere Portal IWWCM
  5. Windows Vista – Unblocking Security For Executables in Program Files
5 Comments »

5 Responses

  1. Daniel says:
    November 18, 2009 at 1:44 am

    For me it still did not work even after disabling security. The message I got “Target `wp-restore-default-repository-configuration’ does not exist in this project”, makes me wonder if this restore feature is already available in Portal 6.1.0.0, or if it only was introduced in a fix pack. What exact version do you have ?

  2. Rob says:
    November 18, 2009 at 8:28 am

    Hey Daniel, 

    The IBM technote which talks about the wp-restore-default-repository-configuration mentions that the feature was introduced in Portal 6.1.0.1. See: http://www-01.ibm.com/support/docview.wss?rs=688&ca=portall2&uid=swg21368395 for more information.

    Rob

  3. DVS Praveen says:
    March 3, 2010 at 2:41 am

    Thanks a lot. I was able to disable security successfully with the help of this article.

  4. SYNCRO says:
    December 16, 2010 at 10:20 pm

    Thanks a lot.I was able to disable security successfully too, great!

  5. HC says:
    September 22, 2011 at 7:50 am

    Another successful disablement :-) Thanks!

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

© Rob@Rojotek