Websphere Application Server has configured LDAP to connect to the Domino server. After the server has been restarted I can no longer access the server with the admin credential.
I can not roll back the configuration because I lost access on the server.
How do I resolve this problem?
I am not sure why you might be seeing this problem. But if you want to get into admin console to fix your security setting, you can disable security as follows temporarily.
To disable security, please perform the following steps via wsadmin:
<WAS_INSTALL_DIR>/bin/> wsadmin -conntype NONE
wsadmin> securityoff
wsadmin> exit
Restart the servers.
Enable the security again from administrative console.
http://www-01.ibm.com/support/docview.wss?uid=swg21405302
Related
I enabled the 'admin port' in the WebLogic Admin Console and now can't get back into the console to change it since I can't start the server.
When I try to start the server, I get this message in Eclipse:
[Stopped, User'principals=[weblogic, Administrators]' has administration role. All tasks by administrator administrators must go through an Administration Port.
When trying to access the console via browser, I get this message:
Console/Management requests or requests with specified to 'true' can >only be made through an administration channel.
This previous solution to this problem suggested modifying the <administration-port-enabled> element in the DOMAIN-HOME\config directory, but this element does not exist in my config.xml. Should I add it?
I have tried creating a new workspace and a new domain, but the problem persists.
Is there another way to disable the 'admin port' without using the WebLogic Admin Console or editing the config.xml file?
MW_HOME/oracle_common/common/bin
./wlst.sh
connect()
And Navigate to AdminServer and find the required Mbean
If not possible to connect, try with Offline Mode.
In Websphere, on Security settings, I changed the flag "Trim Kerberos realm from principal name" and now I am trying to log to websphere console, it keeps saying error Invalid user id or password.
Check the SystemOut.log file, it shows below error
An unexpected exception occurred when trying to run getUserDN() method : GSSException: com.ibm.ws.security.auth.kerberos.NoCredentialFoundException: Did not find user in userRegistry for userName: wasadmin#abccompany.com
What are different options I can try to login to console successfully?
I am not sure what your security setting are and why the login is failing after enabling the setting. But if you want to get into admin console to fix your security setting, you can disable security as follows temporarily.
To disable security, please perform the following steps via wsadmin:
<WAS_INSTALL_DIR>/bin/> wsadmin -conntype NONE.
wsadmin> securityoff.
wsadmin> exit.
Restart the servers.
Enable the security from administrative console.
http://www-01.ibm.com/support/docview.wss?uid=swg21405302
I have already installed Websphere Applcation Server 8.5.5 on my machine without username password.
But for some reason now after using it for several days without any problem, today I got a problem where I am asked to enter username and password in one of the applications which I deployed on WAS8.5.5.
Now how can I create a username and password in an already installed WAS 8.5.5?
If you want to disable application security,
in Security -> Global Security section, uncheck Enable application security
else you want to enable application security, configure User account repository with available realm definitions.
I have a asp.net mvc application that interacts with RabbitMq. Everything works great locally.
However, on our deployment server it cannot connect
DEBUG|MassTransit.RabbitMqTransport.Integration.RabbitMqConnectionCache|Connecting: muyuser#localhost:5672/|
ERROR|MassTransit.RabbitMqTransport.RabbitMqReceiveTransport|RabbitMQ connection failed: Connect failed: muyuser#localhost:5672/|
What I'm able to gather is this
In order to connect to RabbitMq you need a valid .erlang.cookie in (on windows) your User root
As best I can tell, this cookie is created when you install rabbitmq
In development we're using localdb which runs as the developer's user (which has this cookie)
In production the application runs off of IIS which uses the application pool and the built-in ApplicationPoolIdentity account. Which doesn't have a User folder for the .erlang.cookie file to live in.
So the question becomes...what now? How is this intended to work?
Obviously we could create a dedicated user for the web application but our system administrator is understandably very reluctant to do this.
Another clue, is that when I tried to RDP, log in as myself and connect to rabbit I found that I could not. After troubleshooting I discovered that my cookie didn't match up with that of others who could! I replaced it with the one from c:\windows\.erlang.cookie and could then connect from cli. It seems possible like there is a cookie installed somewhere for the applicationpoolidentity but it is an incorrect cookie. What is the location where it would go?
Erlang cookies are used for internode communication, whether it is for clustering RabbitMQ or for contacting RabbitMQ via the command line using rabbitmqctl.
If you have problems with an AMQP connection, then the erlang cookie has nothing to do here.
Take a look at access control https://www.rabbitmq.com/access-control.html to see if your user is properly configured.
At the same time check the server logs to see why the connection is refused.
I've have added my domain account permissions to Windows AppFabric 1.1 Caching using the "grant" Powershell command. A sample app runs locally on the machine itself fine. Also, I'm able to telnet to the port 22233 from another box successfully (I'm pretty sure its not firewall issue).
Could this be IIS permissions somehow? I don't see a site created under IIS. Is there a log I can check to see specifically why the remote calls are getting rejected with a "ErrorCode:SubStatus:There is a temporary failure. Please retry later."
You granted permissions your account to AppFaric Cache, but are you sure that your app runs under this account ? If this is a WebSite, this another user (ApplicationPoolIdentity).
Try to grant your machine (by adding a $ at the end) or run your app under your granted user.
To be sure it is a problem in security, you can try to disable it at server side, just for testing purpose.
Set-CacheClusterSecurity -SecurityMode None -ProtectionLevel None
please find msdn here.