|Oracle® Identity Manager Installation and Configuration Guide for IBM WebSphere Application Server
Part Number E14064-04
The following sections describe the steps involved in changing the password for the xelsysadm administrative user for Oracle Identity Manager release 9.1.X deployed on IBM Websphere Application Server version 6.1.X.
Oracle recommends that you create a backup of the application server and database before changing the password for the xelsysadm user. Although a complete backup is recommended, the following backup is sufficient for this procedure:
Note:When you create the backup, make sure that there is no user activity on the Oracle Identity Manager application and Websphere Application Server.
Create a backup of the WebSphere configuration by using
backupConfig.cmd before starting this procedure. Changing password is a complicated process and you would need the WebSphere configuration backup to restore to the previous working state, if anything goes wrong. Refer to IBM documentation for more information on how to use the backupConfig utility. For clustered installation, create backup for all WebSphere profiles.
Create a backup of the database, specifically the USR table for the row where
To change the password of the xelsysadm user in IBM WebSphere Application Server 6.1.x:
Login to the WebSphere Admin Console and the Oracle Identity Manager Administrative and User Console in two different browser windows. For a clustered installation of Oracle Identity Manager, make sure that all the node agents in XL_CELL are started, including the XL_MODEL_NODE.
Change the password for xelsysadm in the Administrative and USer Console. To do so:
Login to Administrative and User Console as xelsysadm.
Click My Account, and then click Change Password.
Enter old and new passwords, and then click OK to change the password.
Note:For a clustered installation of Oracle Identity Manager, shut down the
Change the password in the WebSphere Admin Console for XLJMSLogin. To do so:
Note:This step is not required if you are using WebSphere MQ for JMS messaging. Default installations of Oracle Identity Manager used WebSphere default JMS implementation.
In the WebSphere Admin Console, click Security, Secure Administration, Applications and Infrastructure.
On the right pane, click Java Authentication and Authorization Service, J2C Authentication Data, XLJMSLogin.
Enter the new password and click OK.
Save the password in the master configuration.
Change the password in the WebSphere Admin Console for standalone custom registry. To do so:
In the WebSphere Admin Console, navigate to Security, Secure Administration, Applications and infrastructure, and Standalone Custom Registry.
Enter the new password.
Enter primary administrative user name as
xelsysadm. The following warning message is displayed:
The administrative user ID does not exist in the user repository.
Ignore the warning and click Save to save the password in the master configuration.
Uninstall applications. To do so:
In the WebSphere Admin Console, navigate to Applications, Enterprise Applications.
Select Xellerate and Nexaweb, and click Uninstall.
Click Save to save the password to the main configuration.
For a clustered installation of Oracle Identity Manager, click Preferences, and select Synchronize changes with Nodes before saving.
Change the soap-client.properties. To do so, in the WebSphere installation, open the
/properties/soap.client.props file, and enter the new password for the com.ibm.SOAP.loginPassword property.
For a clustered installation of Oracle Identity Manager, perform this step for WebSphere installations and profiles on all the nodes that are involved in
Restart WebSphere Application Server.
For a clustered installation of Oracle Identity Manager, restart Deployment Manager and Node Manager on all the nodes including
XL_MODEL_NODE. Do not start WebSphere Application Servers in
Run the following utility to redeploy Oracle Identity Manager:
For Microsoft Windows:
Note:Provide the new password for xelsysadm to run the patch.
Restart WebSphere Application Server.
For a clustered installation of Oracle Application Server, you can shutdown Node Manager on
XL_MODEL_NODE. Start WebSphere Application Server in the
Logout of the WebSphere Admin Console and relogin.
If a problem occurs while changing the password, then it is possible to rollback the changes by using the
restoreConfig.cmd script. Refer to IBM documentation for more information on how to use this utility.
You must also restore the USR table from the backup. For example, restore the USR table for the row where