DECRIPTING WEBLOGIC PASSWORD

-
One of the most important WebLogic Server files in terms of security is SerializedSystemIni.dat which contains encrypted security data and is located in$DOMAIN_HOME/security directory. Other file is boot.properties file located in$DOMAIN_HOME/servers/AdminServer/security directory which contains an encrypted version of weblogic admin username and password.
Below tutorial shows how to decrypt, recover username or password, having access to SerializedSystemIni.dat and boot.properties files. But not only, we can also use this method to:
·         recover database username and password of JDBC Connection pool – encrypted password resides in $DOMAIN_HOME/config/jdbc directory, in xml files
·         recover password of a keystore where we store SSL certificates
·         any encrypted password from config.xml  located in $DOMAIN_HOME/config dir
Let’s roll:
NOTE: SerializedSystemIni.dat file exists in $DOMAIN_HOME/security directory.
1. Create a script decrypt_password.py in $DOMAIN_HOME/security directory and paste the following code into it:
from weblogic.security.internal import *
from weblogic.security.internal.encryption import *
encryptionService = SerializedSystemIni.getEncryptionService(".")
clearOrEncryptService = ClearOrEncryptedService(encryptionService)
# Take encrypt password from user
pwd = raw_input("Paste encrypted password ({AES}fk9EK...): ")
# Delete unnecessary escape characters
preppwd = pwd.replace("\\", "")
# Display password
print "Decrypted string is: " + clearOrEncryptService.decrypt(preppwd)
2. Set domain environment variables
source $DOMAIN_HOME/bin/setDomainEnv.sh
3. Get encrypted password, in this example from boot.properties file of AdminServer
#Username:
grep username $DOMAIN_HOME/servers/AdminServer/security/boot.properties | sed -e "s/^username=\(.*\)/\1/"
#Password:
grep password $DOMAIN_HOME/servers/AdminServer/security/boot.properties | sed -e "s/^password=\(.*\)/\1/"
4. Navigate to $DOMAIN_HOME/security directory and run the following command to start decryption:
cd $DOMAIN_HOME/security
java weblogic.WLST decrypt_password.py
Initializing WebLogic Scripting Tool (WLST) ...
Welcome to WebLogic Server Administration Scripting Shell
Type help() for help on available commands
Please enter encrypted password (Eg. {AES}fk9EK...): {AES}jkIkkdh693dsyLt+DrKUfNcXryuHKLJD76*SXnPqnl5oo\=
Decrypted string is: welcome01
Decrypted value will be displayed on the screen.


login as: root
root@172.21.2.5's password:
Last login: Thu Jul 21 18:04:23 2016 from 172.21.21.23
[root@icdemo2 ~]# su - applmgr
[applmgr@icdemo2 ~]$ cd /u01/appsTier/
[applmgr@icdemo2 appsTier]$ ls
EBSapps.env  fs1  fs2  fs_ne
[applmgr@icdemo2 appsTier]$ cd fs1/FMW_Home/user_projects/
applications/ domains/
[applmgr@icdemo2 appsTier]$ cd fs1/FMW_Home/user_projects/
applications/ domains/
[applmgr@icdemo2 appsTier]$ cd fs1/FMW_Home/user_projects/domains/EBS_domain_dem                                                                                        o2/security/
[applmgr@icdemo2 security]$ ls
DefaultAuthenticatorInit.ldift  SerializedSystemIni.dat
DefaultRoleMapperInit.ldift     XACMLRoleMapperInit.ldift
[applmgr@icdemo2 security]$ vi decrypt_password.py
[applmgr@icdemo2 security]$ cd ..
[applmgr@icdemo2 EBS_domain_demo2]$ cd bin/
[applmgr@icdemo2 bin]$ ls
nodemanager        service_migration        startWebLogic.sh
secureWebLogic.sh  setDomainEnv.sh          stopManagedWebLogic.sh
server_migration   startManagedWebLogic.sh  stopWebLogic.sh
[applmgr@icdemo2 bin]$ . setDomainEnv.sh
[applmgr@icdemo2 EBS_domain_demo2]$ cd ..
[applmgr@icdemo2 domains]$ cd EBS_domain_demo2/
[applmgr@icdemo2 EBS_domain_demo2]$ cd servers/AdminServer/security/
[applmgr@icdemo2 security]$ grep password boot.properties | sed -e "s/^password=                                                                                        \(.*\)/\1/"
{AES}5KPQJ/TQknT1qgY5WSAIDNt3pkS2+loekLNPzquk28Q=
[applmgr@icdemo2 security]$ cd /u01/appsTier/fs1/FMW_Home/user_projects/domains/                                                                                        EBS_domain_demo2/security/
[applmgr@icdemo2 security]$ java weblogic.WLST decrypt_password.py
Initializing WebLogic Scripting Tool (WLST) ...
Welcome to WebLogic Server Administration Scripting Shell
Type help() for help on available commands
Paste encrypted password ({AES}fk9EK...):
Decrypted string is:
[applmgr@icdemo2 security]$ java weblogic.WLST decrypt_password.py
Initializing WebLogic Scripting Tool (WLST) ...
Welcome to WebLogic Server Administration Scripting Shell
Type help() for help on available commands
Paste encrypted password ({AES}fk9EK...): {AES}5KPQJ/TQknT1qgY5WSAIDNt3pkS2+loek                                                                                        LNPzquk28Q
Problem invoking WLST - Traceback (innermost last):
 File "/u01/appsTier/fs1/FMW_Home/user_projects/domains/EBS_domain_demo2/securi                                                                                        ty/decrypt_password.py", line 10, in ?
       at weblogic.security.internal.encryption.JSafeEncryptionServiceImpl.decr                                                                                        yptBytes(JSafeEncryptionServiceImpl.java:139)
       at weblogic.security.internal.encryption.JSafeEncryptionServiceImpl.decr                                                                                        yptString(JSafeEncryptionServiceImpl.java:187)
       at weblogic.security.internal.encryption.ClearOrEncryptedService.decrypt                                                                                        (ClearOrEncryptedService.java:96)
       at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
       at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.                                                                                        java:57)
       at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAcces                                                                                        sorImpl.java:43)
       at java.lang.reflect.Method.invoke(Method.java:606)
weblogic.security.internal.encryption.EncryptionServiceException: weblogic.secur                                                                                        ity.internal.encryption.EncryptionServiceException
[applmgr@icdemo2 security]$ java weblogic.WLST decrypt_password.py
Initializing WebLogic Scripting Tool (WLST) ...
Welcome to WebLogic Server Administration Scripting Shell
Type help() for help on available commands
Paste encrypted password ({AES}fk9EK...): {AES}5KPQJ/TQknT1qgY5WSAIDNt3pkS2+loekLNPzquk28Q=
Decrypted string is: Inbox123

[applmgr@icdemo2 security]$

Comments

  1. Unknown16 April 2020 at 10:36

    how can I pass the weblogic password and username {AES} from boot.properties into the WLST commands dynamically? I don't want user to enter the encrypted password.

    Any help is appreciated.

    Thanks

    ReplyDelete
  2. Unknown16 April 2020 at 10:36

    how can I pass the weblogic password and username {AES} from boot.properties into the WLST commands dynamically? I don't want user to enter the encrypted password.

    Any help is appreciated.

    Thanks

    ReplyDelete

Post a Comment

Popular posts from this blog

RMAN backup Status (Remaining Time and Percentage)

-
On Running a huge database backup we often need to know the status of backup. 1) How much backup is taken. 2) How much is remain. 3) Estimate time to complete the backup. After lot of search i find out this amazing query below. col dbsize_mbytes for 99,999,990.00 justify right head "DBSIZE_MB" col input_mbytes for 99,999,990.00 justify right head "READ_MB" col output_mbytes for 99,999,990.00 justify right head "WRITTEN_MB" col output_device_type for a10 justify left head "DEVICE" col complete for 990.00 justify right head "COMPLETE %" col compression for 990.00 justify right head "COMPRESS|% ORIG" col est_complete for a20 head "ESTIMATED COMPLETION" col recid for 9999999 head "ID" select recid , output_device_type , dbsize_mbytes , input_bytes/1024/1024 input_mbytes , output_bytes/1024/1...
Read more

EBS R12.2 Autoconfig Failed. Resolved

-
Hi, Please do the following and retest the issue: Due to the method required for "cleaning out" / "re-synchronizing" the following tables, it is EXPECTED / REQUIRED that the Applications have been shutdown. The only thing running should be the Database Tier. Note: A full backup should also be taken before any testing begins. Test the following steps in a development instance, and then migrate accordingly once the desired result is confirmed: 1. Backup the fnd_oam_context_files, fnd_nodes, and adop_valid_nodes tables in the EBS env: sqlplus applsys/pwd create table fnd_oam_context_files_bkp as select * from fnd_oam_context_files; create table fnd_nodes_bk as select * from fnd_nodes; create table adop_valid_nodes_bk as select * from adop_valid_nodes; 2. Truncate the following tables: truncate table fnd_oam_context_files; truncate table fnd_nodes; truncate table adop_valid_nodes; 3. Run AutoConfig on the DB tier ...
Read more

Cleaning nodes in EBS databae.

-
Cleaning EBS nodes with EXEC FND_CONC_CLONE.SETUP_CLEAN; . EBSapps.env run   $ sqlplus apps/<PASSWORD> SQL> create table fnd_nodes_22ep14 as select * from fnd_nodes; SQL> exec fnd_conc_clone.setup_clean; PL/SQL procedure successfully completed. SQL> commit; Commit complete. After that run autoconfig in below order to populate the FND TABLES properly. 1) Stop application services ( optional but  recommended )  2) Run autoconfig on dbTier 3) Run autoconfig on appTier
Read more