Replacing the WebSphere Application Server administrator user ID | HCL Digital Experience

If you change your security configuration, you might need to replace your old IBM WebSphere Application Server administrator user ID with a new WebSphere Application Server administrator user ID.

About this task

Complete the following steps to replace the WebSphere® Application Server administrator user ID:

Procedure

  1. Create a user in the Manage Users and Groups portlet to replace the current WebSphere® Application Server administrative user.
  2. Run the following task to replace the old WebSphere® Application Server administrative user with the new user:
    • AIX® HP-UX Linux Solaris: ./ConfigEngine.sh wp-change-was-admin-user -DWasPassword=password -DnewAdminId=newadminid -DnewAdminPw=newpassword from the wp_profile_root/ConfigEngine directory.
    • IBM® i: ConfigEngine.sh wp-change-was-admin-user -DWasPassword=password -DnewAdminId=newadminid -DnewAdminPw=newpassword from the wp_profile_root\ConfigEngine directory.
    • Windows: ConfigEngine.bat wp-change-was-admin-user -DWasPassword=password -DnewAdminId=newadminid -DnewAdminPw=newpassword from the wp_profile_root\ConfigEngine directory.
    • z/OS®: ./ConfigEngine.sh wp-change-was-admin-user -DWasPassword=password -DnewAdminId=newadminid -DnewAdminPw=newpassword from the wp_profile_root/ConfigEngine directory. The -DnewAdminGroupID parameter is needed only if you plan to replace the old administrative group ID.
    Note: Refer to the description of the newAdminId property in wkplc.properties under wp_profile_root\ConfigEngine\properties\ for guidance on populating the value in the command line.
    Additional parameter for stopped servers: This task verifies the user against a running server instance. If the server is stopped, add the -Dskip.ldap.validation=true parameter to the task to skip the validation.
  3. Verify that the task completed successfully. Stop and restart all required servers.

What to do next

If you use an external security manager such as Security Access Manager, you must manually remove the old administrator user ID from the external security manager.