Beruflich Dokumente
Kultur Dokumente
com/pa
3. Change weblogic user credentials in the boot.properties file for each server.
Restart all OBIEE Services.
TEST: Weblogic Servers should start, Should be able to login as Embedded LDAP Users.
4. Change External LDAP Authenticator Principal Users password (User account used to retrieve the Users and
Groups from the LDAP Server).
Restart all OBIEE Services.
TEST: Should be able to see the list of Users and Groups from External LDAP Authenticator.
TEST: Should be able to login as both Embedded and External LDAP Authenticator Users.
5. Change the password for all the DataSources connection pool details in WebLogic Admin Console.
NOTE: This step can also be done through WLST Scripting and System MBean in FMW EM Console
6. Change the Scheduler DB Schema User password in FMW EM Console (for DEV_BIPLATFORM).
NOTE: This step can also be done through WLST Scripting and System MBean in FMW EM Console
7. Change the passwords for the Data Sources that are been used in the RPD (like Usage Tracking, etc).
8. Change the Database Schema Users passwords (for DEV_BIPLATFORM, DEV_MDS, etc) at the Database Level.
NOTE: If the OBIEE is installed without shipped-in essbase, Password Changing steps are completed at this step.
TEST: All the OPMN (BI Component) Services should start (except the Essbase related services) and be in alive state.
TEST: Should be able to login as both default and external LDAP Users.
NOTE: If Shipped-in Essbase is installed along with OBIEE, continue below steps.
9. Change the Database Schema password stored in Registry properties file (generate a new reg.properties file).
10. Change the Database Schema password in the EPM System Registry.
TEST: All the OPMN (BI Component) Services should start and be in alive state.
TEST: Should be able to login as both default and external LDAP Users.
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 1 of 19
https://blogs.oracle.com/pa
In the WebLogic Admin Console Domain Structure Security Realms myrealm Users and
Groups tab Users tab Click on the Username reset the password in passwords tab.
Change the password for all the Users existing in the WebLogic Embedded LDAP (like weblogic,
BISystemUser, etc)
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 2 of 19
https://blogs.oracle.com/pa
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 3 of 19
https://blogs.oracle.com/pa
After restart of WebLogic Servers the entries in boot.properties file get encrypted.
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 4 of 19
https://blogs.oracle.com/pa
Even though it says No restarts are necessary. It doesnt list the Users and Groups from external LDAP
Authenticator and also unable to login as External LDAP Users.
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 5 of 19
https://blogs.oracle.com/pa
Successfully able to login to OBIEE as both Embedded and external LDAP users after the above
changes.
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 6 of 19
https://blogs.oracle.com/pa
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 7 of 19
https://blogs.oracle.com/pa
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 8 of 19
https://blogs.oracle.com/pa
7. Change the passwords for the Data Sources that are been
used in the RPD (like usage tracking, etc).
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 9 of 19
https://blogs.oracle.com/pa
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 10 of 19
https://blogs.oracle.com/pa
If the OBIEE is installed without shipped-in essbase, Password Changing steps are completed at
this step.
If Shipped-in Essbase is installed along with OBIEE, continue below steps.
Essbase Server uses a database schema password stored in the reg.properties file.
Where $ORACLE_HOME=C:\Oracle\Middleware\Oracle_BI1
Syntax is:
updateRegProperties.py biHome biInstance DbUrl DbUserName DbNewPassword DbDriverClass
Go to WLST prompt and run below cmd or if wlst is in path then execute below cmd
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 11 of 19
https://blogs.oracle.com/pa
C:\Oracle\Middleware\Oracle_BI1\common\bin\wlst.cmd
C:\Oracle\Middleware\Oracle_BI1\bifoundation\install\updateRegProperties.py %BIHOME%
%BIINST% jdbc:oracle:thin:@<databasehostname>:1521/orcl PROD_BIPLATFORM newpassword
oracle.jdbc.OracleDriver
Where
%BIHOME% = C:\Oracle\Middleware\Oracle_BI1
%BIINST% = C:\Oracle\Middleware\instances\instance1
E.g.:
C:\Oracle\Middleware\Oracle_BI1\common\bin>wlst.cmd C:\Oracle\Middleware\Oracle_
BI1\bifoundation\install\updateRegProperties.py C:\Oracle\Middleware\Oracle_BI1
C:\Oracle\Middleware\instances\instance1 jdbc:oracle:thin:@raghav2140630.us.oracle.
com:1521/orcl AHR_BIPLATFORM Oracle123 "oracle.jdbc.OracleDriver"
Output:
Note: The solution can be simple if your company security rules agree for a clear text
entry of the password in the above reg.properties file.
We are exercising all these steps so that we can enter an encrypted password.
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 12 of 19
https://blogs.oracle.com/pa
The DB Schema User password will also be present in the epm system registry
You can see this in encrypted form by executing the below bat file:
The Report gets saved under and can be opened in Browser as html page:
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 13 of 19
https://blogs.oracle.com/pa
We need to change this Encrypted DB Schema User Password in the EPM System Registry also:
C:\Oracle\Middleware\instances\instance1\config\foundation\11.1.2.0>epmsys_regis
try.bat updateencryptedproperty HOST/database_conn/@dbPassword Oracle123
Output:
The new value of the property has been encrypted and updated on the component.
Now if you run below command it will display the new encrypted dbPassword:
If not you can also check the value in html format by rerunning the epmsys_registry.bat
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 14 of 19
https://blogs.oracle.com/pa
HTML Report:
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 15 of 19
https://blogs.oracle.com/pa
2. Rename server.jar from release 11.1.2.3.504 to server504.jar (provided separately) and copy it to the
$ORACLE_HOME/products/Essbase/EssbaseStudio/Server folder in the installed environment in the folder
3. Copy $ORACLE_HOME/products/Essbase/EssbaseStudio/Server/scripts.template/encryptPassword.sh.template
(not available so use the attached file) to
$ORACLE_INSTANCE/EssbaseStudio/essbasestudio1/bin/encryptPassword.sh
8. Now remove the server504.jar file and the password.encryption.version=2 entry from server.properties file
************************************************************************************************
Rename the attached server.jar as server504.jar and placed it under below location
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 16 of 19
https://blogs.oracle.com/pa
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 17 of 19
https://blogs.oracle.com/pa
Encrypted password is displayed on the command Prompt, Copy this value to server.properties
file
NOTE: Make sure there are no spaces in this password (parameter and its value)
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 18 of 19
https://blogs.oracle.com/pa
Now remove the server504.jar file and the password.encryption.version=2 entry from
server.properties file
Attachements/Files needed to fulfill the task: Change the Database Schema password for
Essbase Studio
Server504.jar (already renamed from server.jar)
This file can also be picked up from Oracle EPM 11.1.2.3.504 environments if EPM products are also
implemented from below location C:/Oracle/Middleware/EPMSystem11R1/products/Essbase/EssbaseStudio/Server
set ORACLE_HOME=C:\Oracle\Middleware\Oracle_BI1
set ORACLE_INSTANCE=C:\Oracle\Middleware\instances\instance1
set JAVA_HOME=C:\Oracle\Middleware\Oracle_BI1\jdk
set EPM_ORACLE_INSTANCE=%ORACLE_INSTANCE%
set EPM_ORACLE_HOME=%ORACLE_HOME%
set CPATH=%EPM_ORACLE_HOME%/products/Essbase/EssbaseStudio/Server/server504.jar;%EPM_ORACLE_HOME%/common/config/11.1.2.0/hit-
common.jar;%EPM_ORACLE_HOME%/common/jlib/11.1.2.0/registry-api.jar
******************************************************************************************************
Documented against OBIEE (11.1.1.7.x) release where Essbase (11.1.2.3.003) & Essbase Studio (11.1.2.2.200)
******************************************************************************************************
BI Oracle CEAL Team, Author: Veera Raghavendra Rao Koka (Updated on 03-Mar-2015) Page 19 of 19