CentraSite deals with two types of users:
Predefined users
These users are used for internal communication between the various
components of CentraSite, and also for guest access to CentraSite.
Login users
These users represent real users who are defined in the user
repositories that CentraSite uses for authentication of users. Login users
can log in to CentraSite's graphical UIs.
There can be several Application Server Tiers (ASTs) accessing a single CentraSite registry, and any password change that occurs on one AST should be made known to the other ASTs.
The following users are predefined in CentraSite:
DefaultUser
This is the owner of all predefined objects. The predefined password
for this user is "PwdFor_CS21". You should change
this password as soon as possible after you have installed CentraSite.
guest
This user is configured to have access to only some resources, and for
those resources to have only read access. The predefined password for this user
is "guest".
If you wish to protect all data in the CentraSite Registry/Repository from read accesses from guest users you can change the password of this user.
UDDIsubscriptionUser
This user is used for communication between the application server and
the CentraSite UDDI server. The predefined password for this user is
"UDDI4CentraSite".
PurgeUser
This is a user who can purge log records. The predefined password for
this user is "LogPurger4CS".
EventsUser
The CentraSite Events Listener will use this user name for
authentication before persisting event data to the RuntimeEvents Collection
database. The predefined password for this user is
"EventsManager4CS". You can change this password or,
alternatively you can change the "EventsUser" to a login user by configuring
the Event Receiver, as described in the topic Configuring the Event
Receiver in the section Run-Time Events of the
document Managing Targets and Run-Time Events.
 |
Warning: You cannot log on to CentraSite Control using the user ID/password combination for any of these predefined users. Guest users can log on to CentraSite Control without a password by using the link on the login page. |
If you wish to change the password of a predefined user, use a command of the following form:
CentrasiteCommand set Password [-url <CENTRASITE-URL>] -user <USER-ID> -password <PASSWORD> -predefinedUser <PREDEFINED-USER> -newPassword <NEW-PASSWORD>
You can execute the above command in the command line interface CentraSiteCommand.cmd (Windows) or CentraSiteCommand.sh (UNIX) of Command Central. The tool is located in <CentraSiteInstallDir>/utilities.
If you start the command line tool with no parameters, you receive a help text summarizing the required input parameters.
The following table describes the complete set of input parameters that
you can use with the set Password utility:
| Parameter | Description |
|---|---|
-url |
The fully qualified URL (http://localhost:53307/CentraSite/CentraSite) for the CentraSite registry/repository. |
-user |
The user ID of a user who has the "CentraSite Administrator" role. |
-password |
The password of the user identified by the parameter "-user". |
-predefinedUser |
The user ID of the predefined user whose password you wish to change. |
-newPassword |
The new password for the predefined user. |
For example:
CentrasiteCommand set Password [-url "http://localhost:53307/CentraSite/CentraSite"] -user "AdminUser" -password "ABCXYZ123" -predefinedUser "DefaultUser" -newPassword "MyPassword2"
The parameters of the command are case-sensitive, so for example the parameter "-url" must be specified as shown and not as "-URL".
If you omit the passwords from the command, you will be prompted to provide them.
Note:
When the password for a predefined user has been changed, any
application using this user needs to be adapted to use the new password.
CentraSite provides a secure password store for managing the passwords of login users whose credentials are required for internal communication between CentraSite components.
Examples of such scenarios that require authentication credentials for internal communication are the use of policies such as Promote Asset and Initiate Approval. These policies cause a lifecycle model state change that requires the approval of an authorized login user.
This password store exists in parallel to the user repository that CentraSite uses for authentication of users. There is no automatic synchronization of passwords between the user repository and the password store. The password for a given login user in the password store must be the same as the password for the same login user in the user repository. If you change a password in the user repository, you must manually update the password in the password store to the same new password.
The password store resides on the Software AG Runtime. If your CentraSite configuration uses more than one application server tier (AST), you must ensure that each AST uses an up-to-date version of the password store.
If you wish to change the password of a login user in the password store, use a command of the following form:
CentrasiteCommand set Password [-url <CENTRASITE-URL>] -user <USER-ID> -password <PASSWORD> -userToStore <USER-TO-STORE> -passwordToStore <PASSWORD-TO-STORE>
You can execute the above command in the command line interface CentraSiteCommand.cmd (Windows) or CentraSiteCommand.sh (UNIX) of Command Central. The tool is located in <CentraSiteInstallDir>/utilities.
If you start the command line tool with no parameters, you receive a help text summarizing the required input parameters.
The following table describes the complete set of input parameters that
you can use with the set Password utility:
| Parameter | Description |
|---|---|
-url |
The fully qualified URL (http://localhost:53307/CentraSite/CentraSite) for the CentraSite registry/repository. |
-user |
The user ID of a user who has the "CentraSite Administrator" role. |
-password |
The password of the user identified by the parameter "-user". |
-userToStore |
The user ID of the login user whose password you wish to change in the password store. |
-passwordToStore |
The new password to be stored in the password
store for the login user identified by the parameter -userToStore.
|
For example:
CentrasiteCommand.sh set Password [-url "http://localhost:53307/CentraSite/CentraSite"] -user "AdminUser" -password "ABCXYZ123" -userToStore "SomeLoginUserID" -passwordToStore "SomeNewPassword"
The parameters of the command are case-sensitive, so for example the parameter "-url" must be specified as shown and not as "-URL".
If you omit the passwords from the command, you will be prompted to provide them.
