Security concerns with AXIS2 in Administrator tomcat
Article ID: KB0084813
Updated On:
| Products | Versions |
|---|---|
| TIBCO Administrator | - |
| Not Applicable | - |
Description
Resolution:
Administrator does not use Axis2, although it does get loaded as part of the install, and uses a well-known default password. This has been addresssed in TRA 5.7 release. For now the best thing to do is just to change the password. You can change the AXIS administration default password in the following way:
- Edit administrator\version\tomcat\webapps\axis2\WEB-INF\conf\axis2.xml and change the below params
<parameter name="userName" locked="false">admin</parameter>
<parameter name="password" locked="false">xxxxxxxx</parameter>
To completely eliminate AXIS2 from your system you can delete the /tibco/administrator/5.6/tomcat/webapps/axis2 directory then create a new domain. This has been tested by Support and the TIBCO products still work properly. This has not been formally tested by our QA team, however this is virtually the same thing that was done with Admin 5.7 which is now delivered without AXIS2 bundled.
Administrator does not use Axis2, although it does get loaded as part of the install, and uses a well-known default password. This has been addresssed in TRA 5.7 release. For now the best thing to do is just to change the password. You can change the AXIS administration default password in the following way:
- Edit administrator\version\tomcat\webapps\axis2\WEB-INF\conf\axis2.xml and change the below params
<parameter name="userName" locked="false">admin</parameter>
<parameter name="password" locked="false">xxxxxxxx</parameter>
To completely eliminate AXIS2 from your system you can delete the /tibco/administrator/5.6/tomcat/webapps/axis2 directory then create a new domain. This has been tested by Support and the TIBCO products still work properly. This has not been formally tested by our QA team, however this is virtually the same thing that was done with Admin 5.7 which is now delivered without AXIS2 bundled.
Issue/Introduction
Security concerns with AXIS2 in Administrator tomcat
Feedback
Yes
No
Powered by
