MyThinkPond

On Java, Python, Groovy, Grails, Spring, Node.js, Linux, Arduino, ARM, Embedded Devices & Web

Weblogic 10.3 – Using clear passwords while in production mode

Posted by Venkatt Guhesan on July 23, 2010

In Weblogic, (on your development server or workstation), you might want to run it in “production mode” but you don’t want to go through and encrypt all the database passwords in the JDBC files for your development database servers.

Well, this article shows you how. Before you do this, make sure you are NOT doing this in a production environment. By doing this in a real-production environment, you may be compromising the security of  your production infrastructure. Also backup all files before modifying them so that if you run into any errors, you can revert back.

1. In startWeblogic.cmd file (located here: <BEA_HOME>\user_projects\domains\<YourDomain>\bin\) there will a line that says the following:

set SAVE_JAVA_OPTIONS=%JAVA_OPTIONS%

edit that line and add the following “-Dweblogic.management.allowClearTextPasswords=true”. Please note that in your case you may have additional java options pre-defined for your environment. Here’s the end result:

set SAVE_JAVA_OPTIONS=%JAVA_OPTIONS% -Dweblogic.management.allowClearTextPasswords=true
 

2. Next in each of your jdbc files (located here: <BEA_HOME>\user_projects\domains\<YourDomain>\config\jdbc), remove the following tag:

<password-encrypted>...</password-encrypted>

and replace the password with a JDBC property called “password” with the clear-text password like this:

<properties>
 <property>
 <name>user</name>
 <value>testuser</value>
 </property>
 <property>
 <name>password</name>
 <value>mypasswordfortest</value>
 </property>
 </properties>

3. Start up your server and you should be good to go.

Also as an added bonus, you can also bypass Weblogic from asking for your weblogic userid and password by adding the below two lines to your startWeblogic.cmd file (right after the line in step #1 above).

set WLS_USER=your_weblogic_id
set WLS_PW=your_weblogic_password

Cheers

Advertisements

2 Responses to “Weblogic 10.3 – Using clear passwords while in production mode”

  1. Alejandra G. said

    If you are deploying to a managed server, you can write the clear password fragment (with -D) in the arguments-serverStartup section of the server with the Admin Console.

  2. andres g said

    You saved my life with this one… Thanks.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

 
%d bloggers like this: