Recover websphere password

Google online and found this interesting step to recover websphere 7.1 password.

For encrypting the password we have,

//java/bin/java -Djava.ext.dirs=//deploytool/itp/plugins/com.ibm.websphere.v7_7.0.1.v20100710_0411/wasJars/ -cp securityimpl.jar:iwsorb.jar com.ibm.ws.security.util.PasswordEncoder secret

The output is

decoded password == “secret”, encoded password == “{xor}LDo8LTor”

Hence, you can use the same method to decrypt the encrypted password.

//java/bin/java -Djava.ext.dirs=//deploytool/itp/plugins/com.ibm.websphere.v7_7.0.1.v20100710_0411/wasJars/ -cp securityimpl.jar:iwsorb.jar com.ibm.ws.security.util.PasswordDecoder {xor}LDo8LTor

The output is

encoded password == “{xor}LDo8LTor”, decoded password == “secret”

If you want to know, you can update the password for the deployment manager and nodes without knowing the password. Check out /…/config/cells//security.xml. 🙂