How to Transfer Users with active password policy
up vote
2
down vote
favorite
I want to transfer users from our QA environment to the PROD environment on Sitecore.NET 8.2 (rev. 170728).
It is totally fine if the users are deactivated and have a random password set. Unfortunately it seems like I cannot import any user since the default or empty password does not meet the password policy requirements. How can I import the users?
I do have access to the serialization files, so I can edit them if that helps. On other environments, I temporarily changed the config, but I cannot do that on PROD.
security user-management serialization
asked 2 days ago
Markus
23928
add a comment |
up vote
2
down vote
favorite
I want to transfer users from our QA environment to the PROD environment on Sitecore.NET 8.2 (rev. 170728).
It is totally fine if the users are deactivated and have a random password set. Unfortunately it seems like I cannot import any user since the default or empty password does not meet the password policy requirements. How can I import the users?
I do have access to the serialization files, so I can edit them if that helps. On other environments, I temporarily changed the config, but I cannot do that on PROD.
security user-management serialization
asked 2 days ago
Markus
23928
1
Have you tried using packages? When you use serialization, password is always set tob, with packages, random password is generated. Maybe try to set password policy requirements on QA first and then generate package with users?
– Marek Musielak
2 days ago
Same applies to Packages, none of the users are imported. Is there a Setting of how random passwords are generated?
– Markus
2 days ago
2
kb.sitecore.net/articles/242631 did you try this solution ?
– Vlad Iobagiu
2 days ago
I have not. Since the users are not imported at all, I probably won't be able to sync the passwords. Anyway, I don't want to transfer users on DB Level since this is exactly what the user migration is supposed to do... at least that's what I think :-)
– Markus
2 days ago
add a comment |
up vote
2
down vote
favorite
up vote
2
down vote
favorite
I want to transfer users from our QA environment to the PROD environment on Sitecore.NET 8.2 (rev. 170728).
It is totally fine if the users are deactivated and have a random password set. Unfortunately it seems like I cannot import any user since the default or empty password does not meet the password policy requirements. How can I import the users?
I do have access to the serialization files, so I can edit them if that helps. On other environments, I temporarily changed the config, but I cannot do that on PROD.
security user-management serialization
asked 2 days ago
Markus
23928
I want to transfer users from our QA environment to the PROD environment on Sitecore.NET 8.2 (rev. 170728).
It is totally fine if the users are deactivated and have a random password set. Unfortunately it seems like I cannot import any user since the default or empty password does not meet the password policy requirements. How can I import the users?
I do have access to the serialization files, so I can edit them if that helps. On other environments, I temporarily changed the config, but I cannot do that on PROD.
security user-management serialization
security user-management serialization
asked 2 days ago
Markus
23928
asked 2 days ago
Markus
23928
asked 2 days ago
Markus
23928
asked 2 days ago
Markus
23928
asked 2 days ago
Markus
23928
23928
1
Have you tried using packages? When you use serialization, password is always set tob, with packages, random password is generated. Maybe try to set password policy requirements on QA first and then generate package with users?
– Marek Musielak
2 days ago
Same applies to Packages, none of the users are imported. Is there a Setting of how random passwords are generated?
– Markus
2 days ago
2
kb.sitecore.net/articles/242631 did you try this solution ?
– Vlad Iobagiu
2 days ago
I have not. Since the users are not imported at all, I probably won't be able to sync the passwords. Anyway, I don't want to transfer users on DB Level since this is exactly what the user migration is supposed to do... at least that's what I think :-)
– Markus
2 days ago
add a comment |
1
Have you tried using packages? When you use serialization, password is always set tob, with packages, random password is generated. Maybe try to set password policy requirements on QA first and then generate package with users?
– Marek Musielak
2 days ago
Same applies to Packages, none of the users are imported. Is there a Setting of how random passwords are generated?
– Markus
2 days ago
2
kb.sitecore.net/articles/242631 did you try this solution ?
– Vlad Iobagiu
2 days ago
I have not. Since the users are not imported at all, I probably won't be able to sync the passwords. Anyway, I don't want to transfer users on DB Level since this is exactly what the user migration is supposed to do... at least that's what I think :-)
– Markus
2 days ago
1
1
Have you tried using packages? When you use serialization, password is always set to
b, with packages, random password is generated. Maybe try to set password policy requirements on QA first and then generate package with users?– Marek Musielak
2 days ago
Have you tried using packages? When you use serialization, password is always set to
b, with packages, random password is generated. Maybe try to set password policy requirements on QA first and then generate package with users?– Marek Musielak
2 days ago
Same applies to Packages, none of the users are imported. Is there a Setting of how random passwords are generated?
– Markus
2 days ago
Same applies to Packages, none of the users are imported. Is there a Setting of how random passwords are generated?
– Markus
2 days ago
2
2
kb.sitecore.net/articles/242631 did you try this solution ?
– Vlad Iobagiu
2 days ago
kb.sitecore.net/articles/242631 did you try this solution ?
– Vlad Iobagiu
2 days ago
I have not. Since the users are not imported at all, I probably won't be able to sync the passwords. Anyway, I don't want to transfer users on DB Level since this is exactly what the user migration is supposed to do... at least that's what I think :-)
– Markus
2 days ago
I have not. Since the users are not imported at all, I probably won't be able to sync the passwords. Anyway, I don't want to transfer users on DB Level since this is exactly what the user migration is supposed to do... at least that's what I think :-)
– Markus
2 days ago
add a comment |
3 Answers
3
active
oldest
votes
up vote
2
down vote
accepted
There is a config settings you can use called SerializationPassword.
Just use a config patch file with
<settings>
<setting name="SerializationPassword" value="Secret!@#" />
</settings>
and deserialize your serialized users after.
Sitecore will set all your new users' passwords to Secret!@# (or whatever value you want) instead of default b which is used when the setting is not present.
You can deserialize you users in PROD and then change they passwords to whatever you want manually.
answered 2 days ago
Marek Musielak
9,22811034
1
That sounds exactly like what I need! I will let you know if it worked.
– Markus
2 days ago
It works, I can use Powershell to serialize & deserialize the users now. Thanks! One issue I had was that my SQL Server went down when I used a randomly generated strong password. The setting might be insufficiently escaped, so be careful. It might also be an unrelated issue on my DEV machine though.
– Markus
2 days ago
Sitecore usesMembership.CreateUser(userName, password);by default. I don't see any reason why it could cause your SQL Server to go down even with the most sophisticated password. I suppose it was not related to deserialization of your users.
– Marek Musielak
2 days ago
add a comment |
up vote
0
down vote
Sitecore membership is based on ASP.Net membership. It means that you can use same approach for moving users from one DB to another. It is low-level actions with data that could give you better understanding how users/roles information is managed in Sitecore.
- Open Microsoft SQL Server Management Studio
- Connect to SQL server with Sitecore Core QA database
- Click right mouse button on Sitecore Core QA database, select "Generate scripts..." from context menu
- Select all tables, where name starts with "aspnet_" on first page of wizard
- Click "Advanced" button on second page of wizard. Select "Types of data to script":"Data only", "Script DROP and CREATE":"Script DROP and CREATE"
- Generate script
- Backup Sitecore Core Production Database
- Run script generated from Core QA database on Core Production database
answered 2 days ago
Anton
1,511213
I know that I can transfer users on a DB level, but that is not what I want to do.
– Markus
2 days ago
add a comment |
up vote
0
down vote
One addition to Mareks answer:
Unfortunately the logic for passwords in package deserialization is completely different. It uses a class called PasswordGenerator, which is initialized with the following parameters:
MinimumCharacters = 6;
MaximumCharacters = 8;
ConsecutiveCharacters = false;
RepeatCharacters = true;
ExcludeSymbols = true;
So if your password policy requires longer passwords or symbols, this functionality is pretty much unusable.
answered yesterday
Markus
23928
add a comment |
3 Answers
3
active
oldest
votes
3 Answers
3
active
oldest
votes
active
oldest
votes
active
oldest
votes
up vote
2
down vote
accepted
There is a config settings you can use called SerializationPassword.
Just use a config patch file with
<settings>
<setting name="SerializationPassword" value="Secret!@#" />
</settings>
and deserialize your serialized users after.
Sitecore will set all your new users' passwords to Secret!@# (or whatever value you want) instead of default b which is used when the setting is not present.
You can deserialize you users in PROD and then change they passwords to whatever you want manually.
answered 2 days ago
Marek Musielak
9,22811034
1
That sounds exactly like what I need! I will let you know if it worked.
– Markus
2 days ago
It works, I can use Powershell to serialize & deserialize the users now. Thanks! One issue I had was that my SQL Server went down when I used a randomly generated strong password. The setting might be insufficiently escaped, so be careful. It might also be an unrelated issue on my DEV machine though.
– Markus
2 days ago
Sitecore usesMembership.CreateUser(userName, password);by default. I don't see any reason why it could cause your SQL Server to go down even with the most sophisticated password. I suppose it was not related to deserialization of your users.
– Marek Musielak
2 days ago
add a comment |
up vote
2
down vote
accepted
There is a config settings you can use called SerializationPassword.
Just use a config patch file with
<settings>
<setting name="SerializationPassword" value="Secret!@#" />
</settings>
and deserialize your serialized users after.
Sitecore will set all your new users' passwords to Secret!@# (or whatever value you want) instead of default b which is used when the setting is not present.
You can deserialize you users in PROD and then change they passwords to whatever you want manually.
answered 2 days ago
Marek Musielak
9,22811034
1
That sounds exactly like what I need! I will let you know if it worked.
– Markus
2 days ago
It works, I can use Powershell to serialize & deserialize the users now. Thanks! One issue I had was that my SQL Server went down when I used a randomly generated strong password. The setting might be insufficiently escaped, so be careful. It might also be an unrelated issue on my DEV machine though.
– Markus
2 days ago
Sitecore usesMembership.CreateUser(userName, password);by default. I don't see any reason why it could cause your SQL Server to go down even with the most sophisticated password. I suppose it was not related to deserialization of your users.
– Marek Musielak
2 days ago
add a comment |
up vote
2
down vote
accepted
up vote
2
down vote
accepted
There is a config settings you can use called SerializationPassword.
Just use a config patch file with
<settings>
<setting name="SerializationPassword" value="Secret!@#" />
</settings>
and deserialize your serialized users after.
Sitecore will set all your new users' passwords to Secret!@# (or whatever value you want) instead of default b which is used when the setting is not present.
You can deserialize you users in PROD and then change they passwords to whatever you want manually.
answered 2 days ago
Marek Musielak
9,22811034
There is a config settings you can use called SerializationPassword.
Just use a config patch file with
<settings>
<setting name="SerializationPassword" value="Secret!@#" />
</settings>
and deserialize your serialized users after.
Sitecore will set all your new users' passwords to Secret!@# (or whatever value you want) instead of default b which is used when the setting is not present.
You can deserialize you users in PROD and then change they passwords to whatever you want manually.
answered 2 days ago
Marek Musielak
9,22811034
edited 2 days ago
answered 2 days ago
Marek Musielak
9,22811034
answered 2 days ago
Marek Musielak
9,22811034
answered 2 days ago
Marek Musielak
9,22811034
9,22811034
1
That sounds exactly like what I need! I will let you know if it worked.
– Markus
2 days ago
It works, I can use Powershell to serialize & deserialize the users now. Thanks! One issue I had was that my SQL Server went down when I used a randomly generated strong password. The setting might be insufficiently escaped, so be careful. It might also be an unrelated issue on my DEV machine though.
– Markus
2 days ago
Sitecore usesMembership.CreateUser(userName, password);by default. I don't see any reason why it could cause your SQL Server to go down even with the most sophisticated password. I suppose it was not related to deserialization of your users.
– Marek Musielak
2 days ago
add a comment |
1
That sounds exactly like what I need! I will let you know if it worked.
– Markus
2 days ago
It works, I can use Powershell to serialize & deserialize the users now. Thanks! One issue I had was that my SQL Server went down when I used a randomly generated strong password. The setting might be insufficiently escaped, so be careful. It might also be an unrelated issue on my DEV machine though.
– Markus
2 days ago
Sitecore usesMembership.CreateUser(userName, password);by default. I don't see any reason why it could cause your SQL Server to go down even with the most sophisticated password. I suppose it was not related to deserialization of your users.
– Marek Musielak
2 days ago
1
1
That sounds exactly like what I need! I will let you know if it worked.
– Markus
2 days ago
That sounds exactly like what I need! I will let you know if it worked.
– Markus
2 days ago
It works, I can use Powershell to serialize & deserialize the users now. Thanks! One issue I had was that my SQL Server went down when I used a randomly generated strong password. The setting might be insufficiently escaped, so be careful. It might also be an unrelated issue on my DEV machine though.
– Markus
2 days ago
It works, I can use Powershell to serialize & deserialize the users now. Thanks! One issue I had was that my SQL Server went down when I used a randomly generated strong password. The setting might be insufficiently escaped, so be careful. It might also be an unrelated issue on my DEV machine though.
– Markus
2 days ago
Sitecore uses
Membership.CreateUser(userName, password); by default. I don't see any reason why it could cause your SQL Server to go down even with the most sophisticated password. I suppose it was not related to deserialization of your users.– Marek Musielak
2 days ago
Sitecore uses
Membership.CreateUser(userName, password); by default. I don't see any reason why it could cause your SQL Server to go down even with the most sophisticated password. I suppose it was not related to deserialization of your users.– Marek Musielak
2 days ago
add a comment |
up vote
0
down vote
Sitecore membership is based on ASP.Net membership. It means that you can use same approach for moving users from one DB to another. It is low-level actions with data that could give you better understanding how users/roles information is managed in Sitecore.
- Open Microsoft SQL Server Management Studio
- Connect to SQL server with Sitecore Core QA database
- Click right mouse button on Sitecore Core QA database, select "Generate scripts..." from context menu
- Select all tables, where name starts with "aspnet_" on first page of wizard
- Click "Advanced" button on second page of wizard. Select "Types of data to script":"Data only", "Script DROP and CREATE":"Script DROP and CREATE"
- Generate script
- Backup Sitecore Core Production Database
- Run script generated from Core QA database on Core Production database
answered 2 days ago
Anton
1,511213
I know that I can transfer users on a DB level, but that is not what I want to do.
– Markus
2 days ago
add a comment |
up vote
0
down vote
Sitecore membership is based on ASP.Net membership. It means that you can use same approach for moving users from one DB to another. It is low-level actions with data that could give you better understanding how users/roles information is managed in Sitecore.
- Open Microsoft SQL Server Management Studio
- Connect to SQL server with Sitecore Core QA database
- Click right mouse button on Sitecore Core QA database, select "Generate scripts..." from context menu
- Select all tables, where name starts with "aspnet_" on first page of wizard
- Click "Advanced" button on second page of wizard. Select "Types of data to script":"Data only", "Script DROP and CREATE":"Script DROP and CREATE"
- Generate script
- Backup Sitecore Core Production Database
- Run script generated from Core QA database on Core Production database
answered 2 days ago
Anton
1,511213
I know that I can transfer users on a DB level, but that is not what I want to do.
– Markus
2 days ago
add a comment |
up vote
0
down vote
up vote
0
down vote
Sitecore membership is based on ASP.Net membership. It means that you can use same approach for moving users from one DB to another. It is low-level actions with data that could give you better understanding how users/roles information is managed in Sitecore.
- Open Microsoft SQL Server Management Studio
- Connect to SQL server with Sitecore Core QA database
- Click right mouse button on Sitecore Core QA database, select "Generate scripts..." from context menu
- Select all tables, where name starts with "aspnet_" on first page of wizard
- Click "Advanced" button on second page of wizard. Select "Types of data to script":"Data only", "Script DROP and CREATE":"Script DROP and CREATE"
- Generate script
- Backup Sitecore Core Production Database
- Run script generated from Core QA database on Core Production database
answered 2 days ago
Anton
1,511213
Sitecore membership is based on ASP.Net membership. It means that you can use same approach for moving users from one DB to another. It is low-level actions with data that could give you better understanding how users/roles information is managed in Sitecore.
- Open Microsoft SQL Server Management Studio
- Connect to SQL server with Sitecore Core QA database
- Click right mouse button on Sitecore Core QA database, select "Generate scripts..." from context menu
- Select all tables, where name starts with "aspnet_" on first page of wizard
- Click "Advanced" button on second page of wizard. Select "Types of data to script":"Data only", "Script DROP and CREATE":"Script DROP and CREATE"
- Generate script
- Backup Sitecore Core Production Database
- Run script generated from Core QA database on Core Production database
answered 2 days ago
Anton
1,511213
answered 2 days ago
Anton
1,511213
answered 2 days ago
Anton
1,511213
answered 2 days ago
Anton
1,511213
1,511213
I know that I can transfer users on a DB level, but that is not what I want to do.
– Markus
2 days ago
add a comment |
I know that I can transfer users on a DB level, but that is not what I want to do.
– Markus
2 days ago
I know that I can transfer users on a DB level, but that is not what I want to do.
– Markus
2 days ago
I know that I can transfer users on a DB level, but that is not what I want to do.
– Markus
2 days ago
add a comment |
up vote
0
down vote
One addition to Mareks answer:
Unfortunately the logic for passwords in package deserialization is completely different. It uses a class called PasswordGenerator, which is initialized with the following parameters:
MinimumCharacters = 6;
MaximumCharacters = 8;
ConsecutiveCharacters = false;
RepeatCharacters = true;
ExcludeSymbols = true;
So if your password policy requires longer passwords or symbols, this functionality is pretty much unusable.
answered yesterday
Markus
23928
add a comment |
up vote
0
down vote
One addition to Mareks answer:
Unfortunately the logic for passwords in package deserialization is completely different. It uses a class called PasswordGenerator, which is initialized with the following parameters:
MinimumCharacters = 6;
MaximumCharacters = 8;
ConsecutiveCharacters = false;
RepeatCharacters = true;
ExcludeSymbols = true;
So if your password policy requires longer passwords or symbols, this functionality is pretty much unusable.
answered yesterday
Markus
23928
add a comment |
up vote
0
down vote
up vote
0
down vote
One addition to Mareks answer:
Unfortunately the logic for passwords in package deserialization is completely different. It uses a class called PasswordGenerator, which is initialized with the following parameters:
MinimumCharacters = 6;
MaximumCharacters = 8;
ConsecutiveCharacters = false;
RepeatCharacters = true;
ExcludeSymbols = true;
So if your password policy requires longer passwords or symbols, this functionality is pretty much unusable.
answered yesterday
Markus
23928
One addition to Mareks answer:
Unfortunately the logic for passwords in package deserialization is completely different. It uses a class called PasswordGenerator, which is initialized with the following parameters:
MinimumCharacters = 6;
MaximumCharacters = 8;
ConsecutiveCharacters = false;
RepeatCharacters = true;
ExcludeSymbols = true;
So if your password policy requires longer passwords or symbols, this functionality is pretty much unusable.
answered yesterday
Markus
23928
answered yesterday
Markus
23928
answered yesterday
Markus
23928
answered yesterday
Markus
23928
23928
add a comment |
add a comment |
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsitecore.stackexchange.com%2fquestions%2f15060%2fhow-to-transfer-users-with-active-password-policy%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
1
Have you tried using packages? When you use serialization, password is always set to
b, with packages, random password is generated. Maybe try to set password policy requirements on QA first and then generate package with users?– Marek Musielak
2 days ago
Same applies to Packages, none of the users are imported. Is there a Setting of how random passwords are generated?
– Markus
2 days ago
2
kb.sitecore.net/articles/242631 did you try this solution ?
– Vlad Iobagiu
2 days ago
I have not. Since the users are not imported at all, I probably won't be able to sync the passwords. Anyway, I don't want to transfer users on DB Level since this is exactly what the user migration is supposed to do... at least that's what I think :-)
– Markus
2 days ago