Any easier way to inform the temporary password when upgrading from Tomcat to WAS Liberty
![]()
When upgrading from CLM tomcat to CLM 6.0.1 WAS Liberty, the passwords.txt file which contains temporary passwords for each user is created, the server administrator must communicate to each user to inform the temporary password. However, there are 500 users in the system, it is very time consuming to do so. Is there any easy way to inform users such as sending email? Otherwise, will upgrade to CLM 6.0.1 tomcat instead as WAS Liberty is expected more stable.
|
Accepted answer
![]()
Ralph Schoon (62.7k●3●36●43)
| answered Mar 29 '16, 4:51 a.m.
FORUM ADMINISTRATOR / FORUM MODERATOR / JAZZ DEVELOPER
I am not aware that there is more automation available with respect to the passwords. My expectation would be, if you run a deployment with 500 users, you would most likely use LDAP and not a local application server specific solution. If you would use LDAP, all the problems would go away, as a user could use the tools provide with the LDAP tool to set their passwords.
With respect to Tomcat/WAS Liberty. For all I know Tomcat is still supported. It is just not shipped any more with the install files and WAS Liberty is used instead. Reasons might be security concerns. I am not sure. But you can still use Tomcat if you want to and avoid the password migration. If you want to use WAS Liberty, I would really consider using LDAP and not the local file for your user base. Especially as your amount of users asks for a distributed topology with multiple WAS Liberty Servers. And you really, really don't want to manage this with local files with user ID's and passwords. You definitely want to use LDAP/Active directory to manage this. Taki Nakajo selected this answer as the correct answer
Comments Changing to LDAP and the user/password file is a one-time-effort.
I agree totally with you that changing to LDAP will resolve the concern. Thank you for your answer.
I tested manually editing the
\JazzTeamServer\server\liberty\servers\clm\conf\basicUserRegistry.
xml file. It works as the follows. I may also use this method to reset to the temporary password for all users then inform users to change to own password.
User passwords can be changed via the basicUserRegistry.xml file.
On Rational Team Concert 6.0.1 on WAS Liberty application server, the
user information is stored in the basicUserRegistry.xml file (located
in <install
directory>\JazzTeamServer\server\liberty\servers\clm\conf).
For example, a user named 'tammy' has the following information:
<user name="tammy"
password="{aes}ACjH9S9cqYkYZgV/3oewgT24mVOShEDu6sAFmd5OjUIo"/>
Here, you can change the password hash to represent a new password.
To change the password to ADMIN, the hash would be
<user name="tammy"
password="{aes}AOxsQMoce829JJacYG4x3ga87N+UljtW8wNM2oc+QioN"/>
The following technote has been published.
How to reset a user password in Jazz Team Server with WebSphere Liberty
|