将force-valid-basic-auth-credentials添加到config.xml时出错 [英] Error adding enforce-valid-basic-auth-credentials to config.xml
问题描述
我尝试添加
<enforce-valid-basic-auth-credentials>false</enforce-valid-basic-auth-credentials>
在weblogic服务器12.1.3的config.xml中的<security-configuration>
标记内.添加此行之后,每当我启动服务器时,我的weblogic服务器就会关闭.
inside the <security-configuration>
tag in config.xml of weblogic server 12.1.3 After I add this line my weblogic server goes to shutdown whenever i start up my server.
有什么问题吗?我已经在下面附加了config.xml内容
is there something wrong? I have attached my config.xml contents below
<domain-version>12.1.3.0.0</domain-version>
<security-configuration>
<name>mdm_domain</name>
<realm>
<sec:authentication-provider xsi:type="wls:default-authenticatorType">
<sec:name>DefaultAuthenticator</sec:name>
</sec:authentication-provider>
<sec:authentication-provider xsi:type="wls:default-identity-asserterType">
<sec:name>DefaultIdentityAsserter</sec:name>
<sec:active-type>AuthenticatedUser</sec:active-type>
</sec:authentication-provider>
<sec:role-mapper xmlns:xac="http://xmlns.oracle.com/weblogic/security/xacml" xsi:type="xac:xacml-role-mapperType">
<sec:name>XACMLRoleMapper</sec:name>
</sec:role-mapper>
<sec:authorizer xmlns:xac="http://xmlns.oracle.com/weblogic/security/xacml" xsi:type="xac:xacml-authorizerType">
<sec:name>XACMLAuthorizer</sec:name>
</sec:authorizer>
<sec:adjudicator xsi:type="wls:default-adjudicatorType">
<sec:name>DefaultAdjudicator</sec:name>
</sec:adjudicator>
<sec:credential-mapper xsi:type="wls:default-credential-mapperType">
<sec:name>DefaultCredentialMapper</sec:name>
</sec:credential-mapper>
<sec:cert-path-provider xsi:type="wls:web-logic-cert-path-providerType">
<sec:name>WebLogicCertPathProvider</sec:name>
</sec:cert-path-provider>
<sec:cert-path-builder>WebLogicCertPathProvider</sec:cert-path-builder>
<sec:name>myrealm</sec:name>
<sec:password-validator xmlns:pas="http://xmlns.oracle.com/weblogic/security/providers/passwordvalidator" xsi:type="pas:system-password-validatorType">
<sec:name>SystemPasswordValidator</sec:name>
<pas:min-password-length>8</pas:min-password-length>
<pas:min-numeric-or-special-characters>1</pas:min-numeric-or-special-characters>
</sec:password-validator>
</realm>
<default-realm>myrealm</default-realm>
<credential-encrypted>{AES}lWxYlHpEqfbODbLmeerJr6H86R6+lvszW466UpoYzuyh6X617HokRf/oKl3cZJM+JTXliBWwXFhAiC9G3JrbxYNBkXMUGqFSOicuMVJVD0tTCuTr6sfY7UPK9M40Vi4n</credential-encrypted>
<node-manager-username>weblogic</node-manager-username>
<node-manager-password-encrypted>{AES}loTlWUtqsyw7sq4ujEhLVDaHCv/s7k22k0KSacFO/Ww=</node-manager-password-encrypted>
<enforce-valid-basic-auth-credentials>false</enforce-valid-basic-auth-credentials>
</security-configuration>
推荐答案
我的回答来不及帮助您,但可能对其他人有所帮助.
My answer comes probably too late to help you, but it may help other people.
我遇到了同样的问题,并且添加'enforce-valid-basic-auth-credentials'标签似乎还不够.
I met the same issue, and adding the 'enforce-valid-basic-auth-credentials' tag seems not to be enough.
然后,我通过WLST添加了此标志:
Then, I added this flag via WLST :
connect('weblogicUser','weblogicPassword','t3://localhost:7001')
edit()
startEdit()
cd('SecurityConfiguration/Your_Domain')
set('EnforceValidBasicAuthCredentials','false')
save()
activate()
(不要忘记在"cd"命令中使用weblogicUser,weblogicPassword,weblogic url和您的域进行编辑...)
(Do not forget to edit with your weblogicUser, weblogicPassword, weblogic url and your domain in the 'cd' command...)
在重新启动服务器后,我查看了config.xml文件,并添加了另一个标签.现在,我的config.xml文件如下所示:
And after restarting my server, I looked in the config.xml file, and another tag has been added. Now, my config.xml file looks like that :
.........
<enforce-valid-basic-auth-credentials>false</enforce-valid-basic-auth-credentials>
<use-kss-for-demo>true</use-kss-for-demo>
</security-configuration>
............
但是此use-kss-for-demo
标记可能取决于您的weblogic配置.因此,我强烈建议您使用WSLT方法来更新此标志.
But this use-kss-for-demo
tag may depend on your weblogic configuration. So I strongly advise you to use the WSLT way to update this flag.
这篇关于将force-valid-basic-auth-credentials添加到config.xml时出错的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!