weblogic版本10.3.3.0
更改控制台密码后,服务重启失败,报错如下:
--------------------------------------------------------------------------------------------------
<2013-10-8 23:40:04> <INFO> <NodeManager> <Server output log file is '/home/weblogic/nodemanager/servers/Server-1/logs/Server-1.out'>
<2013-10-8 下午11时40分06秒 CST> <Info> <WebLogicServer> <BEA-000377> <Starting WebLogic Server with Java HotSpot(TM) 64-Bit Server VM Version 19.0-b09 from Sun Microsystems Inc.>
<2013-10-8 下午11时40分07秒 CST> <Info> <Management> <BEA-141107> <Version: WebLogic Server 10.3.3.0 Fri Apr 9 00:05:28 PDT 2010 1321401 >
<2013-10-8 下午11时40分08秒 CST> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to STARTING>
<2013-10-8 下午11时40分08秒 CST> <Info> <WorkManager> <BEA-002900> <Initializing self-tuning thread pool>
<2013-10-8 下午11时40分08秒 CST> <Notice> <Log Management> <BEA-170019> <The server log file /home/weblogic/nodemanager/servers/Server-1/logs/Server-1.log is opened. All server side log events will be written to this file.>
<2013-10-8 下午11时40分12秒 CST> <Notice> <Security> <BEA-090082> <Security initializing using security realm myrealm.>
<2013-10-8 下午11时40分12秒 CST> <Critical> <Security> <BEA-090402> <Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.>
<2013-10-8 下午11时40分12秒 CST> <Critical> <WebLogicServer> <BEA-000386> <Server subsystem failed. Reason: weblogic.security.SecurityInitializationException: Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.
weblogic.security.SecurityInitializationException: Authentication denied: Boot identity not valid; The user name and/or password from the boot identity file (boot.properties) is not valid. The boot identity may have been changed since the boot identity file was created. Please edit and update the boot identity file with the proper values of username and password. The first time the updated boot identity file is used to start the server, these new values are encrypted.
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.doBootAuthorization(CommonSecurityServiceManagerDelegateImpl.java:959)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1050)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:875)
at weblogic.security.SecurityService.start(SecurityService.java:141)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
Truncated. see log file for complete stacktrace
Caused By: javax.security.auth.login.FailedLoginException: [Security:090304]Authentication Failed: User weblogic javax.security.auth.login.FailedLoginException: [Security:090302]Authentication Failed: User weblogic denied
at weblogic.security.providers.authentication.LDAPAtnLoginModuleImpl.login(LDAPAtnLoginModuleImpl.java:250)
at com.bea.common.security.internal.service.LoginModuleWrapper$1.run(LoginModuleWrapper.java:110)
at java.security.AccessController.doPrivileged(Native Method)
at com.bea.common.security.internal.service.LoginModuleWrapper.login(LoginModuleWrapper.java:106)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
Truncated. see log file for complete stacktrace
--------------------------------------------------------------------------------------------------
原因是:安全文件boot.properties中的username、password未更改
修改密码的完整操作如下(没试验过):
1、登录weblogic控制台 Security Realms--myrealm--Users and Groups--点击需要修改密码的用户--passwords 修改密码
2、进入受管理服务端,修改当前domain下面的boot.properties文件中的username和password(原文件中的已加密,可改为明文,重启后会自动加密)
位置:安装路径\domains\自定义domain名称\servers\AdminServer\security\boot.properties
注意:所有的节点受控端都需更改
3、需要删除当前domain目录下面ldap目录
位置:安装路径\domains\自定义domain名称\servers\AdminServer\data\ldap
注意:所有的节点受控端都需更改
4、重启服务
如下文章也有相应说明:
http://blog.chinaunix.net/uid-22340094-id-16785.html
http://benbenming.iteye.com/blog/347590