Sunday, December 5, 2010

WebLogic - Boot Identity File

Every time a weblogic server is started using scripts or when it is setup as a Windows service, it needs the Weblogic admin userid and password.
One way to ensure that the scripts are not waiting for the user response every time is to create and store the user credentials and save them as a file. the boot identify file starts out as a plain text file, but when the server is started for the first time after (every time a change is made to the file) the entries are encrypted and it is more secure than storing unencrypted credentials in a startup or shutdown script file.

Steps to create the boot identify file:
  1. Start the Administrator server once and provide the credentials when prompted.
  2. Create a text file and place the following text in it:
  3. username=username
    password=password
  4. Save the file as boot.properties in the security directory of the server's root directory
  5. D:\app\Administrator\product\11.1.0\MiddleWareHome\user_projects\domains\bifoundation_domain\servers\bi_server1\security
  6. The server automatically uses this file at next start and stop.
  7. The content of the file after the encryption looks something like this
    #Sun Dec 05 17:51:49 CST 2010
    password={AES}T2DxUm0Oy3kG3xxxxxxxxxxxxxxxysyJaxjpOSg5Tqw\= username={AES}IV+SFI84mucU0xxxxxxxxxxxxxxxxxxCVfWIMPOtlU8\=

No comments:

What is Zero Trust Architecture?