Chinaunix首页 | 论坛 | 博客
  • 博客访问: 2089009
  • 博文数量: 519
  • 博客积分: 10070
  • 博客等级: 上将
  • 技术积分: 3985
  • 用 户 组: 普通用户
  • 注册时间: 2006-05-29 14:05
个人简介

只问耕耘

文章分类

全部博文(519)

文章存档

2016年(1)

2013年(5)

2011年(46)

2010年(220)

2009年(51)

2008年(39)

2007年(141)

2006年(16)

我的朋友

分类:

2007-11-07 17:20:55

Figured I should share this.
WAS6.1 has a totally new design on how it handles the LTPA keys. It basically hides the encrypted passwords from the security.xml, and references a key store called: ltpa.jceks. In the jacl script posted in this thread, we were still setting up the encryption type, no longer needed. Doing so was corrupting the security.xml. Just do this, and it will work:
proc setupLTPA { cell password } {
global AdminConfig
global AdminControl
set secMbean [ $AdminControl queryNames type=SecurityAdmin,process=dmgr,* ]
set timeoutAttr [ list timeout 720 ]
set passwordAttr [ list password $password ]
$AdminControl invoke $secMbean generateKeys $password
set attrs [ list $timeoutAttr $passwordAttr ]
set sec [ $AdminConfig getid /Cell:$cell/Security:/ ]
set ltpa [ $AdminConfig list LTPA $sec ]
$AdminConfig modify $ltpa $attrs
}
阅读(1274) | 评论(0) | 转发(0) |
给主人留下些什么吧!~~