tag:blogger.com,1999:blog-21612553.post115264734960044506..comments2024-03-28T13:17:40.046+11:00Comments on robertmaldon: Recovering passwords from WebSphereUnknownnoreply@blogger.comBlogger23125tag:blogger.com,1999:blog-21612553.post-75549421149578224662014-09-10T13:53:52.287+10:002014-09-10T13:53:52.287+10:00Guyz - How to decode the WAS password in WAS8 ? I ...Guyz - How to decode the WAS password in WAS8 ? I know abt the online decoder .but here im looking for command line <br />with ws_runtime.jar com.ibm.ws.security.util.PasswordEncoder ? Is anyone decoded in WAS8?Shanoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-27848584882069590712014-05-02T01:45:29.327+10:002014-05-02T01:45:29.327+10:00There is an online decoder at this link:
http://ww...There is an online decoder at this link:<br />http://www.poweredbywebsphere.com/decoder.htmlAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-89749197685024232922013-05-11T02:39:16.054+10:002013-05-11T02:39:16.054+10:00really its works a lot.really its works a lot.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-16350161849435310002011-09-03T06:38:56.950+10:002011-09-03T06:38:56.950+10:00This is great blog. It really helped me....... to ...This is great blog. It really helped me....... to find our forgotten password of productionAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-69047206225331304102011-04-20T14:21:03.240+10:002011-04-20T14:21:03.240+10:00Here is a link to an online WebSphere password dec...Here is a link to an online WebSphere password decoder:<br /><br />http://www.poweredbywebsphere.com/decoder.htmlAndy Joneshttps://www.blogger.com/profile/16453858641446589224noreply@blogger.comtag:blogger.com,1999:blog-21612553.post-45205593060997925502011-01-11T09:58:00.820+11:002011-01-11T09:58:00.820+11:00WebSphere 7: /usr/IBM/WebSphere/AppServer/java/jre...WebSphere 7: /usr/IBM/WebSphere/AppServer/java/jre/bin/java -Djava.ext.dirs=/WAS7/IBM/WebSphere/AppServer/deploytool/itp/plugins/com.ibm.websphere.v7_7.0.1.v20090422_1423/wasJars/ -cp securityimpl.jar:iwsorb.jar com.ibm.ws.security.util.PasswordDecoder {xor}encryptedpass=Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-74573816644139234442010-05-29T15:03:22.309+10:002010-05-29T15:03:22.309+10:00awesome!!!awesome!!!Sai Hegdehttps://www.blogger.com/profile/08101766388153349377noreply@blogger.comtag:blogger.com,1999:blog-21612553.post-8700702686716857292010-04-13T05:13:36.596+10:002010-04-13T05:13:36.596+10:00WAS 6 actually has built in scripts for encoding t...WAS 6 actually has built in scripts for encoding the passwords for the ssl.client.props and soap.client.props... I'm assuming you can use it for other file names as well...<br /><br />EX: cd /path/to/was/profile<br />EX: cd /apps/WebSphere/AppServer/profiles/someprofile/bin<br /><br />Run: ../bin/PropFilePasswordEncoder.sh filename password_variable<br /><br />EX: ../bin/PropFilePasswordEncoder.sh ssl.client.props com.ibm.ssl.keyStorePasswordAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-80797706836683114252010-04-07T06:42:07.971+10:002010-04-07T06:42:07.971+10:00Hi All,
I have a basic question with regards to ...Hi All,<br /><br /><br />I have a basic question with regards to decrypting and encrypting WAS admin passwords in XOR format<br /><br />_________________________________<br />My workstation information<br /><br />RSA 7.5 <br />Windows XP<br />________________________________<br /><br />I know the user name for my <br />WAS 6.1 server as wasadmin <br />password to be identified.(I don't remember it )<br /><br />Now I know the path to WAS 6.1 plugin as given in the blog as <br /><br />C:\SDP75\runtimes\base_v61\bin\ProfileManagement\plugins\com.ibm.websphere.v61_6.1.200<br /><br />I don't have the password nor the encrypted password.<br /><br />Questions<br /><br />How do I find it?<br /><br />Where to find it?<br /><br />What command should I use?<br /><br />As per the blog<br /><br />>C:\IBM\WAS61\AppServer\java\bin\java -cp ws_runtime.jar com.ibm.ws.security.util.PasswordDecoder {xor}LDo8LTor<br />encoded password == "{xor}LDo8LTor", decoded password == "secret"<br /><br /><br />Please let me know ASAP.<br /><br />Any help would be greatly appreciated.<br /><br /><br />Thanks & Best Regards<br /><br />HarishUnknownhttps://www.blogger.com/profile/01559122538918687437noreply@blogger.comtag:blogger.com,1999:blog-21612553.post-37123946463606798382009-12-09T03:34:53.950+11:002009-12-09T03:34:53.950+11:00One of the best posts that i have ever read. This ...One of the best posts that i have ever read. This is just too much of priceless Websphere Security information in too small a packet. Kudos to the link that directed me here. <br />http://ecommunity.groupintelligence.com/websphere/forums/showthread.php?t=2000Darshan Shroffhttps://www.blogger.com/profile/12440860085318202150noreply@blogger.comtag:blogger.com,1999:blog-21612553.post-19541489389112811832008-10-01T20:59:00.000+10:002008-10-01T20:59:00.000+10:00The amount of code to encode/decode passwords is s...The amount of code to encode/decode passwords is small, but it is proprietary IBM and therefore not in the public domain.<BR/><BR/>I won't mention tools like JAD...Robert Maldonhttps://www.blogger.com/profile/16280163358319153586noreply@blogger.comtag:blogger.com,1999:blog-21612553.post-72636216710388090172008-09-29T21:11:00.000+10:002008-09-29T21:11:00.000+10:00Is there a way to encode and decode passwords prog...Is there a way to encode and decode passwords programmatically as well?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-78273945499968252512008-08-06T05:00:00.000+10:002008-08-06T05:00:00.000+10:00For the curious, the file repository is stored und...For the curious, the file repository is stored under your profile in: $WAS_HOME\profiles\profileName\config\cells\cellName\fileRegistry.xml. This file contains user and group identifiers, including the encrypted passwords for the user entries. The passwords for a user is encrypted using a one way hash by applying the message digest algorithm specified in the VMM configuration file (wimconfig.xml). The default value for the message digest algorithm is SHA-1. The algorithm can be updated to a different value using the wsadmin command updateIdMgrFileRepository. One of the parameters you can use with this command is the messageDigest Algorithm. <BR/><BR/>from:http://www.ibm.com/developerworks/websphere/techjournal/0701_ilechko/0701_ilechko.htmlAnonymousnoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-71931987688862120832008-07-12T01:41:00.000+10:002008-07-12T01:41:00.000+10:00did anyone try to break the password from the file...did anyone try to break the password from the fileRegistry.xml file in WAS 6.1 (VMM)Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-41470697387973753322008-06-19T09:29:00.000+10:002008-06-19T09:29:00.000+10:00Just wanted to share how it worked for me.WebSpher...Just wanted to share how it worked for me.<BR/><BR/>WebSphere 6.1.x:<BR/><BR/>To Encrypt:<BR/><BR/>/opt/WebSphere/DeploymentManager/deploytool/itp/plugins>${WAS_HOME}/java/bin/java -cp ws_runtime.jar com.ibm.ws.security.util.PasswordEncoder secret<BR/>decoded password == "secret", encoded password == "{xor}LDo8LTor"<BR/><BR/>To Decrypt:<BR/><BR/>/opt/WebSphere/DeploymentManager/deploytool/itp/plugins>${WAS_HOME}/java/bin/java -cp ws_runtime.jar com.ibm.ws.security.util.PasswordDecoder {xor}LDo8LTor<BR/>encoded password == "{xor}LDo8LTor", decoded password == "secret"Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-59044618757386550852008-06-19T09:22:00.000+10:002008-06-19T09:22:00.000+10:00ok there are two plugins directories. The plugins ...ok there are two plugins directories. <BR/><BR/>The plugins directory under ${WAS_HOME} does not have "com.ibm.websphere.v61_6.1.200". When searched for "com.ibm.websphere.v61_6.1.200", i found it under ${WAS_HOME}/deploytool/itp/plugins directory.<BR/><BR/>So guess for different versions its at different location.<BR/>Anyways thanks guys...Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-64597886450358596582008-06-19T09:16:00.000+10:002008-06-19T09:16:00.000+10:00I do not see "com.ibm.websphere.v61_6.1.200" in pl...I do not see "com.ibm.websphere.v61_6.1.200" in plugins directory. <BR/><BR/>I use WAS ND 6.1.0.15. <BR/><BR/>So unable to use the was6.1 decode or encode methodology provided here.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-63792663065257384622008-03-07T14:07:00.000+11:002008-03-07T14:07:00.000+11:00Awesome, thanks for the WAS 6.1 example.Awesome, thanks for the WAS 6.1 example.Robert Maldonhttps://www.blogger.com/profile/16280163358319153586noreply@blogger.comtag:blogger.com,1999:blog-21612553.post-22729253375019627462008-03-07T01:34:00.000+11:002008-03-07T01:34:00.000+11:00Full directory has been truncated. Here it is, spl...Full directory has been truncated. Here it is, splitted line by line:<BR/><BR/><BR/>C:\<BR/>IBM\<BR/>WAS61\<BR/>AppServer\<BR/>bin\<BR/>ProfileManagement\<BR/>plugins\<BR/>com.ibm.websphere.v61_6.1.200Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-36300640934162452322008-03-07T01:29:00.000+11:002008-03-07T01:29:00.000+11:00For WAS 6.1, do the following:To encode:C:\IBM\WAS...For WAS 6.1, do the following:<BR/><BR/>To encode:<BR/><BR/>C:\IBM\WAS61\AppServer\bin\ProfileManagement\plugins\com.ibm.websphere.v61_6.1.200>C:\IBM\WAS61\AppServer\java\bin\java -cp ws_runtime.jar com.ibm.ws.security.util.PasswordEncoder secret<BR/>decoded password == "secret", encoded password == "{xor}LDo8LTor"<BR/><BR/>To decode:<BR/><BR/>C:\IBM\WAS61\AppServer\bin\ProfileManagement\plugins\com.ibm.websphere.v61_6.1.200>C:\IBM\WAS61\AppServer\java\bin\java -cp ws_runtime.jar com.ibm.ws.security.util.PasswordDecoder {xor}LDo8LTor<BR/>encoded password == "{xor}LDo8LTor", decoded password == "secret"<BR/><BR/>Change C:\IBM\WAS61 as needed.<BR/><BR/>Enjoy!Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-47123351020751434572007-11-13T13:49:00.000+11:002007-11-13T13:49:00.000+11:00I do not have access to a WAS 6.1 at the moment. D...I do not have access to a WAS 6.1 at the moment. Does the main() method not exist any more, or is a dependent class missing from the classpath? Got a stack trace?Robert Maldonhttps://www.blogger.com/profile/16280163358319153586noreply@blogger.comtag:blogger.com,1999:blog-21612553.post-71269067334307004582007-11-10T01:49:00.000+11:002007-11-10T01:49:00.000+11:00It does not appear to work for 6.1 - any ideas?It does not appear to work for 6.1 - any ideas?Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-21612553.post-42871458277354978092007-10-11T04:22:00.000+10:002007-10-11T04:22:00.000+10:00That's awesome!! WOuld like to keep watching your ...That's awesome!! <BR/><BR/>WOuld like to keep watching your blog for any such further info.<BR/><BR/>Thanks<BR/><BR/>BPAnonymousnoreply@blogger.com