Saturday, January 4, 2014

How to do/execute OID backup commands

Hey Guys,

    Today I would like to provide you a 'quick tip': How to run backup commands into OID11G.

Basically I will provide 2 different ways:

1) By LdifWrite:

ldifwrite connect=oiddb basedn="cn=users,dc=us,dc=tleoncio-server,dc=com" thread=3 verbose=true ldiffile=/tmp/backup-ThiagoLeoncioEnv-[DATE].dat

*thread option is to improve command performance, in case you have bunch of values to backup.
*This first case, I am doing a full backup of all attributes these users have.

2) By LdapSearch:
ldapsearch  -p 3769 -D cn=orcladmin -w *** -L -b "cn=users,dc=us,dc=tleoncio-server,dc=com" -s sub -j 1000 "objectclass=*" mail > /tmp/output_backup-ThiagoLeoncioEnv-[DATE].dat

* This second case, I am doing only backup of mail attributes of all users.


I hope this helps you. Good coding.

Thiago Leoncio.

Posted by at No comments:

How to change or reset keystore passwords in OAM or OVD

[IDM_HOME]/common/bin/wlst.sh

connect('weblogic_idm','*****','t3://idmhost.mycompany.com:7001');



help('all')       List all WLST commands available.



wls:/IDMDomain/serverConfig> domainRuntime()
Already in Domain Runtime Tree



wls:/IDMDomain/domainRuntime>  listCred(map="OAM_STORE",key="jks")
Already in Domain Runtime Tree

[Name : jks, Description : null, expiry Date : null]
PASSWORD:shr0957elmn5p90idoodohu5no


If you want to change OVD kystore password:

resetKeystorePassword()  --Deprecated

changeKeyStorePassword('inst1', 'ovd1', 'ovd','keys.jks', 'currpassword', 'newpassword')


or use the command prompt(OAM example):

keytool -list -keystore oamclient-truststore.jks
Enter keystore password: <SIMPLE HIT ENTER>

*****************  WARNING WARNING WARNING  *****************
* The integrity of the information stored in your keystore  *
* has NOT been verified!  In order to verify its integrity, *
* you must provide your keystore password.                  *
*****************  WARNING WARNING WARNING  *****************

Keystore type: JKS
Keystore provider: SUN

Your keystore contains 1 entry

oam.simple.ca, Nov 12, 2014, trustedCertEntry,
Certificate fingerprint (MD5): 05:F4:8C:84:85:37:DB:E3:66:87:EF:39:E0:E6:B2:3F

============================================
another Demo example:
keytool -list -keystore /u01/app/idm/products/app/wlserver_10.3/server/lib/DemoTrust.jks
Enter keystore password:<SIMPLE HIT ENTER>

*****************  WARNING WARNING WARNING  *****************
* The integrity of the information stored in your keystore  *
* has NOT been verified!  In order to verify its integrity, *
* you must provide your keystore password.                  *
*****************  WARNING WARNING WARNING  *****************

Keystore type: JKS
Keystore provider: SUN

Your keystore contains 4 entries

certgenca, Mar 22, 2002, trustedCertEntry,
Certificate fingerprint (MD5): 8E:AB:55:50:A4:BC:06:F3:FE:C6:A9:72:1F:4F:D3:89
wlsdemocanew2, Jan 24, 2003, trustedCertEntry,
Certificate fingerprint (MD5): 5B:10:D5:3C:C8:53:ED:75:43:58:BF:D5:E5:96:1A:CF
wlsdemocanew1, Jan 24, 2003, trustedCertEntry,
Certificate fingerprint (MD5): A1:17:A1:73:9B:70:21:B9:72:85:4D:83:01:69:C8:37
wlscertgencab, Jan 24, 2003, trustedCertEntry,
Certificate fingerprint (MD5): A2:18:4C:E0:1C:AB:82:A7:65:86:86:03:D0:B3:D8:FE


In order to change the password run this:
keytool -storepass changeit -storepasswd -keystore /u01/app/idm/config/domains/IDMDomain/output/webgate-ssl/oamclient-keystore.jks


I hope it helps,
Thiago Leoncio
Posted by at No comments:
Subscribe to: Posts (Atom)