OIM - xelsysadm - Password Reset Utility

-
 Please perform below steps to reset the system administrator(xelsysadm) password in OIM

1. First check in database table, if user name is locked or not? if yes then you can run below query and commit

update usr set usr_login_attempts_ctr=0 where usr_login='XELSYSADM';
update usr set usr_locked=0 where usr_login='XELSYSADM';
commit;
 
If this doesn't help, you can try below approach, this should work for sure. 

OIM-11g steps:

1.Go to the below directory. Here path may change based on your server configuration.
OIM-11g path  : /home/oracle/Oracle/Middleware/Oracle_IDM1/server/bin

2.Open the oimadminpasswd_wls.properties file.

3.Update the following variables in the above property oimadminpasswd_wls.properties file.

Enter correct java home path as per your server configuration, May be its JDK 1.8 depend on OIM version
# JAVA_HOME set it to jdk6 or later.
# e.g.: JAVA_HOME=/opt/softwares/shiphome/jdk160_24
JAVA_HOME=/usr/java/jdk1.7.0_80

# COMMON_COMPONENTS_HOME This is Oracle Middleware common home directory.
# e.g: COMMON_COMPONENTS_HOME=/opt/softwares/shiphome/oracle_common
COMMON_COMPONENTS_HOME=/home/oracle/Oracle/Middleware/oracle_common

# OIM_ORACLE_HOME This is OIM Oracle home directory
# e.g: OIM_ORACLE_HOME=/opt/softwares/shiphome/Oracle_IDM1
OIM_ORACLE_HOME=/home/oracle/Oracle/Middleware/Oracle_IDM1

# ORACLE_SECURITY_JPS_CONFIG Specify jps-config-jse.xml file location
# e.g: ORACLE_SECURITY_JPS_CONFIG=/opt/softwares/shiphome/user_projects/domains/base_domain/config/fmwconfig/jps-config-jse.xml

ORACLE_SECURITY_JPS_CONFIG=/home/oracle/Oracle/Middleware/user_projects/domains/base_domain/config/fmwconfig/jps-config-jse.xml

# DOMAIN_HOME Specify Domain Home location of the Weblogic Application Server
# e.g: DOMAIN_HOME=/opt/softwares/shiphome/user_projects/domains/base_domain
DOMAIN_HOME=/home/oracle/Oracle/Middleware/user_projects/domains/base_domain

# DBURL OIM Database URL
# e.g: DBURL=jdbc:oracle:thin:@dbhostname:5521:orclsid
DBURL=jdbc:oracle:thin:@<db-hostname>:1521/orcl

# DBSCHEMAUSER OIM Schema username
DBSCHEMAUSER=DEV_OIM

# OIM_OAM_INTG_ENABLED This should be set to true(case insensitive) in OIM OAM integrated environment. OIM_OAM_INTG_ENABLED is treated as false for any non-true value.
# e.g: OIM_OAM_INTG_ENABLED=true
OIM_OAM_INTG_ENABLED=false

# LDAPURL  LDAP Directory URL. Non SSL port should be specified.
# This property value is ignored if OIM_OAM_INTG_ENABLED is set to false or to any non-true value.
# e.g: LDAPURL=ldap://ldaphostname:3060
LDAPURL=

# LDAPADMINUSER LDAP Directory admin username
# This property value is ignored if OIM_OAM_INTG_ENABLED is set to false or to any non-true value.
# e.g: LDAPADMINUSER=cn=orcladmin
LDAPADMINUSER=

# OIM_ADMIN_LDAP_DN OIM Administrator xelsysadm complete dn in the LDAP directory
# This property value is ignored if OIM_OAM_INTG_ENABLED is set to false or to any non-true value.
# e.g: OIM_ADMIN_LDAP_DN=cn=xelsysadm,cn=Users,dc=us,dc=oracle,dc=com
OIM_ADMIN_LDAP_DN=

4.Run the script as  ./oimadminpasswd_wls.sh oimadminpasswd_wls.properties

5.Provide the correct input for each question as below
        Enter OIM DB Schema Password  :
        Enter OIM Administrator xelsysadm new Password: 
        Re-enter OIM Administrator xelsysadm new Password:
(Note: You can set the same password as earlier)

6. You should get password has been changed successfully



OIM-12c steps:

1.Go to the below directory. Here path may change based on your server configuration.
OIM-12c path  : /home/oracle/Oracle/Middleware/Oracle_Home/idm/server/bin

2.Open the oimadminpasswd_wls.properties file.

3.Update the following variables in the above property oimadminpasswd_wls.properties file.

# JAVA_HOME set it to jdk6 or later.
# e.g.: JAVA_HOME=/opt/softwares/shiphome/jdk160_24
JAVA_HOME=/usr/java/jdk1.8.0_291-amd64

# COMMON_COMPONENTS_HOME This is Oracle Middleware common home directory.
# e.g: COMMON_COMPONENTS_HOME=/opt/softwares/shiphome/oracle_common
COMMON_COMPONENTS_HOME=/home/oracle/Oracle/Middleware/Oracle_Home/oracle_common

# OIM_ORACLE_HOME This is OIM Oracle home directory
# e.g: OIM_ORACLE_HOME=/opt/softwares/shiphome/Oracle_IDM1
OIM_ORACLE_HOME=/home/oracle/Oracle/Middleware/Oracle_Home/idm

# ORACLE_SECURITY_JPS_CONFIG Specify jps-config-jse.xml file location
# e.g: ORACLE_SECURITY_JPS_CONFIG=/opt/softwares/shiphome/user_projects/domains/base_domain/config/fmwconfig/jps-config-jse.xml
ORACLE_SECURITY_JPS_CONFIG=/home/oracle/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain/config/fmwconfig/jps-config-jse.xml

# DOMAIN_HOME Specify Domain Home location of the Weblogic Application Server
# e.g: DOMAIN_HOME=/opt/softwares/shiphome/user_projects/domains/base_domain
DOMAIN_HOME=/home/oracle/Oracle/Middleware/Oracle_Home/user_projects/domains/base_domain

# DBURL OIM Database URL
# e.g: DBURL=jdbc:oracle:thin:@dbhostname:5521:orclsid
DBURL=jdbc:oracle:thin:@<db-hostname>:1521:orcl

# DBSCHEMAUSER OIM Schema username
DBSCHEMAUSER=DEV_OIM

# OIM_OAM_INTG_ENABLED This should be set to true(case insensitive) in OIM OAM integrated environment. OIM_OAM_INTG_ENABLED is treated as false for any non-true value.
# e.g: OIM_OAM_INTG_ENABLED=true
OIM_OAM_INTG_ENABLED=false

# LDAPURL  LDAP Directory URL. Non SSL port should be specified.
# This property value is ignored if OIM_OAM_INTG_ENABLED is set to false or to any non-true value.
# e.g: LDAPURL=ldap://ldaphostname:3060
LDAPURL=

# LDAPADMINUSER LDAP Directory admin username
# This property value is ignored if OIM_OAM_INTG_ENABLED is set to false or to any non-true value.
# e.g: LDAPADMINUSER=cn=orcladmin
LDAPADMINUSER=

# OIM_ADMIN_LDAP_DN OIM Administrator xelsysadm complete dn in the LDAP directory
# This property value is ignored if OIM_OAM_INTG_ENABLED is set to false or to any non-true value.
# e.g: OIM_ADMIN_LDAP_DN=cn=xelsysadm,cn=Users,dc=us,dc=oracle,dc=com
OIM_ADMIN_LDAP_DN=

4.Run the ./oimadminpasswd_wls.sh oimadminpasswd_wls.properties

5.Provide the correct input for each question as below
        Enter OIM DB Schema Password  :
        Enter OIM Administrator xelsysadm new Password: 
        Re-enter OIM Administrator xelsysadm new Password:
(Note: You can set the same password as earlier)

6. You should get password has been changed successfully

Comments

Post a Comment

Popular posts from this blog

PUTTY - The server's host key is not cached in the registry cache

-
Error: "The server's host key is not cached in the registry. You have no guarantee that the server is the computer you think it is. The server's rsa2 key fingerprint is: [SSH KEY FINGERPRINT] If you trust this host, enter "y" to add the key to PuTTY's cache and carry on connecting. If you want to carry on connecting just once, without adding the key to the cache, enter "n". If you do not trust this host, press Return to abandon the connection. Store key in cache? (y/n) y" Answer: Simply run this command in your windows preferred terminal (cmd.exe etc) and agree to accept the host and store the cache: C:\Program Files (x86)\PuTTY\plink.exe -ssh [SSH USERNAME]@[SSH HOST] -P [SSH PORT] echo y | pscp -i /path/to/key/file user@remote:/tmp/file  . echo y | plink -i /path/to/key/file scripts.sh Usually you would hit “y” here, assuming the host key is correct, in order to store it in future connection.  The storage of this goes into the Registry under ...
Read more

OIM-12c Installation - FMW - SOA - IDM

-
Image
Oracle Identity Manager (OIM) 12c Installation Prerequisites: The Oracle Identity Manager software includes the following: 1] Oracle's Java Development Kit (JDK) 1.8 (jdk-8u311-linux-x64.tar.gz) 2]  Fusion Middleware 12.2.1.4.0 3]  SOA Suite 12.2.1.4.0 4] Oracle Identity and Access Management  12.2.1.4.0 What Do You Need? For completing Oracle IDM Setup you will need, Environment as below: Oracle Enterprise Linux 6 or similar, with access to the Internet At least 8GB RAM (16GB recommended) An Oracle Database Enterprise Edition 12 or superior installed and running. Note: Installing a Database for Identity and Access Management (IDM) Suite provides instructions on how to install an Oracle Database that is suitable for Oracle Identity and Access Management Suite. oracle and root user credentials SYS database user credentials Basic understanding of Linux An Oracle Technology Network (OTN) account OIM-11g PS3 Installation Steps: Just for reference https://www.oracle.com/webfol...
Read more

SAML & OAuth 2.0

-
Both SAML (Security Assertion Markup Language) and OAuth 2.0 are widely used protocols for authentication and authorization in web applications, but they serve different purposes. SAML (Security Assertion Markup Language) Purpose: Primarily designed for authentication and single sign-on (SSO) . How it works: A user attempts to access a service provider (SP). The SP redirects the user to an identity provider (IdP). The IdP authenticates the user and sends a SAML assertion to the SP. The SP validates the assertion and grants access to the user. Common use cases: Enterprise applications, government services, and federated identity management systems. OAuth 2.0 Purpose: Designed for authorization , allowing users to grant third-party applications access to their data on a specific service. How it works: A user attempts to access a resource on a service provider. The SP redirects the user to the authorization server. The user grants permission to the application. The authorization s...
Read more