How to Transfer Users with active password policy
up vote
2
down vote
favorite
I want to transfer users from our QA environment to the PROD environment on Sitecore.NET 8.2 (rev. 170728).
It is totally fine if the users are deactivated and have a random password set. Unfortunately it seems like I cannot import any user since the default or empty password does not meet the password policy requirements. How can I import the users?
I do have access to the serialization files, so I can edit them if that helps. On other environments, I temporarily changed the config, but I cannot do that on PROD.
security user-management serialization
asked yesterday
Markus
23928
add a comment |
up vote
2
down vote
favorite
I want to transfer users from our QA environment to the PROD environment on Sitecore.NET 8.2 (rev. 170728).
It is totally fine if the users are deactivated and have a random password set. Unfortunately it seems like I cannot import any user since the default or empty password does not meet the password policy requirements. How can I import the users?
I do have access to the serialization files, so I can edit them if that helps. On other environments, I temporarily changed the config, but I cannot do that on PROD.
security user-management serialization
asked yesterday
Markus
23928
1
Have you tried using packages? When you use serialization, password is always set tob, with packages, random password is generated. Maybe try to set password policy requirements on QA first and then generate package with users?
– Marek Musielak
yesterday
Same applies to Packages, none of the users are imported. Is there a Setting of how random passwords are generated?
– Markus
yesterday
2
kb.sitecore.net/articles/242631 did you try this solution ?
– Vlad Iobagiu
yesterday
I have not. Since the users are not imported at all, I probably won't be able to sync the passwords. Anyway, I don't want to transfer users on DB Level since this is exactly what the user migration is supposed to do... at least that's what I think :-)
– Markus
yesterday
add a comment |
up vote
2
down vote
favorite
up vote
2
down vote
favorite
I want to transfer users from our QA environment to the PROD environment on Sitecore.NET 8.2 (rev. 170728).
It is totally fine if the users are deactivated and have a random password set. Unfortunately it seems like I cannot import any user since the default or empty password does not meet the password policy requirements. How can I import the users?
I do have access to the serialization files, so I can edit them if that helps. On other environments, I temporarily changed the config, but I cannot do that on PROD.
security user-management serialization
asked yesterday
Markus
23928
I want to transfer users from our QA environment to the PROD environment on Sitecore.NET 8.2 (rev. 170728).
It is totally fine if the users are deactivated and have a random password set. Unfortunately it seems like I cannot import any user since the default or empty password does not meet the password policy requirements. How can I import the users?
I do have access to the serialization files, so I can edit them if that helps. On other environments, I temporarily changed the config, but I cannot do that on PROD.
security user-management serialization
security user-management serialization
asked yesterday
Markus
23928
asked yesterday
Markus
23928
asked yesterday
Markus
23928
asked yesterday
Markus
23928
asked yesterday
Markus
23928
23928
1
Have you tried using packages? When you use serialization, password is always set tob, with packages, random password is generated. Maybe try to set password policy requirements on QA first and then generate package with users?
– Marek Musielak
yesterday
Same applies to Packages, none of the users are imported. Is there a Setting of how random passwords are generated?
– Markus
yesterday
2
kb.sitecore.net/articles/242631 did you try this solution ?
– Vlad Iobagiu
yesterday
I have not. Since the users are not imported at all, I probably won't be able to sync the passwords. Anyway, I don't want to transfer users on DB Level since this is exactly what the user migration is supposed to do... at least that's what I think :-)
– Markus
yesterday
add a comment |
1
Have you tried using packages? When you use serialization, password is always set tob, with packages, random password is generated. Maybe try to set password policy requirements on QA first and then generate package with users?
– Marek Musielak
yesterday
Same applies to Packages, none of the users are imported. Is there a Setting of how random passwords are generated?
– Markus
yesterday
2
kb.sitecore.net/articles/242631 did you try this solution ?
– Vlad Iobagiu
yesterday
I have not. Since the users are not imported at all, I probably won't be able to sync the passwords. Anyway, I don't want to transfer users on DB Level since this is exactly what the user migration is supposed to do... at least that's what I think :-)
– Markus
yesterday
1
1
Have you tried using packages? When you use serialization, password is always set to
b, with packages, random password is generated. Maybe try to set password policy requirements on QA first and then generate package with users?– Marek Musielak
yesterday
Have you tried using packages? When you use serialization, password is always set to
b, with packages, random password is generated. Maybe try to set password policy requirements on QA first and then generate package with users?– Marek Musielak
yesterday
Same applies to Packages, none of the users are imported. Is there a Setting of how random passwords are generated?
– Markus
yesterday
Same applies to Packages, none of the users are imported. Is there a Setting of how random passwords are generated?
– Markus
yesterday
2
2
kb.sitecore.net/articles/242631 did you try this solution ?
– Vlad Iobagiu
yesterday
kb.sitecore.net/articles/242631 did you try this solution ?
– Vlad Iobagiu
yesterday
I have not. Since the users are not imported at all, I probably won't be able to sync the passwords. Anyway, I don't want to transfer users on DB Level since this is exactly what the user migration is supposed to do... at least that's what I think :-)
– Markus
yesterday
I have not. Since the users are not imported at all, I probably won't be able to sync the passwords. Anyway, I don't want to transfer users on DB Level since this is exactly what the user migration is supposed to do... at least that's what I think :-)
– Markus
yesterday
add a comment |
3 Answers
3
active
oldest
votes
up vote
2
down vote
accepted
There is a config settings you can use called SerializationPassword.
Just use a config patch file with
<settings>
<setting name="SerializationPassword" value="Secret!@#" />
</settings>
and deserialize your serialized users after.
Sitecore will set all your new users' passwords to Secret!@# (or whatever value you want) instead of default b which is used when the setting is not present.
You can deserialize you users in PROD and then change they passwords to whatever you want manually.
answered yesterday
Marek Musielak
9,19811034
1
That sounds exactly like what I need! I will let you know if it worked.
– Markus
yesterday
It works, I can use Powershell to serialize & deserialize the users now. Thanks! One issue I had was that my SQL Server went down when I used a randomly generated strong password. The setting might be insufficiently escaped, so be careful. It might also be an unrelated issue on my DEV machine though.
– Markus
yesterday
Sitecore usesMembership.CreateUser(userName, password);by default. I don't see any reason why it could cause your SQL Server to go down even with the most sophisticated password. I suppose it was not related to deserialization of your users.
– Marek Musielak
yesterday
add a comment |
up vote
0
down vote
Sitecore membership is based on ASP.Net membership. It means that you can use same approach for moving users from one DB to another. It is low-level actions with data that could give you better understanding how users/roles information is managed in Sitecore.
- Open Microsoft SQL Server Management Studio
- Connect to SQL server with Sitecore Core QA database
- Click right mouse button on Sitecore Core QA database, select "Generate scripts..." from context menu
- Select all tables, where name starts with "aspnet_" on first page of wizard
- Click "Advanced" button on second page of wizard. Select "Types of data to script":"Data only", "Script DROP and CREATE":"Script DROP and CREATE"
- Generate script
- Backup Sitecore Core Production Database
- Run script generated from Core QA database on Core Production database
answered yesterday
Anton
1,501213
I know that I can transfer users on a DB level, but that is not what I want to do.
– Markus
yesterday
add a comment |
up vote
0
down vote
One addition to Mareks answer:
Unfortunately the logic for passwords in package deserialization is completely different. It uses a class called PasswordGenerator, which is initialized with the following parameters:
MinimumCharacters = 6;
MaximumCharacters = 8;
ConsecutiveCharacters = false;
RepeatCharacters = true;
ExcludeSymbols = true;
So if your password policy requires longer passwords or symbols, this functionality is pretty much unusable.
answered 15 hours ago
Markus
23928
add a comment |
3 Answers
3
active
oldest
votes
3 Answers
3
active
oldest
votes
active
oldest
votes
active
oldest
votes
up vote
2
down vote
accepted
There is a config settings you can use called SerializationPassword.
Just use a config patch file with
<settings>
<setting name="SerializationPassword" value="Secret!@#" />
</settings>
and deserialize your serialized users after.
Sitecore will set all your new users' passwords to Secret!@# (or whatever value you want) instead of default b which is used when the setting is not present.
You can deserialize you users in PROD and then change they passwords to whatever you want manually.
answered yesterday
Marek Musielak
9,19811034
1
That sounds exactly like what I need! I will let you know if it worked.
– Markus
yesterday
It works, I can use Powershell to serialize & deserialize the users now. Thanks! One issue I had was that my SQL Server went down when I used a randomly generated strong password. The setting might be insufficiently escaped, so be careful. It might also be an unrelated issue on my DEV machine though.
– Markus
yesterday
Sitecore usesMembership.CreateUser(userName, password);by default. I don't see any reason why it could cause your SQL Server to go down even with the most sophisticated password. I suppose it was not related to deserialization of your users.
– Marek Musielak
yesterday
add a comment |
up vote
2
down vote
accepted
There is a config settings you can use called SerializationPassword.
Just use a config patch file with
<settings>
<setting name="SerializationPassword" value="Secret!@#" />
</settings>
and deserialize your serialized users after.
Sitecore will set all your new users' passwords to Secret!@# (or whatever value you want) instead of default b which is used when the setting is not present.
You can deserialize you users in PROD and then change they passwords to whatever you want manually.
answered yesterday
Marek Musielak
9,19811034
1
That sounds exactly like what I need! I will let you know if it worked.
– Markus
yesterday
It works, I can use Powershell to serialize & deserialize the users now. Thanks! One issue I had was that my SQL Server went down when I used a randomly generated strong password. The setting might be insufficiently escaped, so be careful. It might also be an unrelated issue on my DEV machine though.
– Markus
yesterday
Sitecore usesMembership.CreateUser(userName, password);by default. I don't see any reason why it could cause your SQL Server to go down even with the most sophisticated password. I suppose it was not related to deserialization of your users.
– Marek Musielak
yesterday
add a comment |
up vote
2
down vote
accepted
up vote
2
down vote
accepted
There is a config settings you can use called SerializationPassword.
Just use a config patch file with
<settings>
<setting name="SerializationPassword" value="Secret!@#" />
</settings>
and deserialize your serialized users after.
Sitecore will set all your new users' passwords to Secret!@# (or whatever value you want) instead of default b which is used when the setting is not present.
You can deserialize you users in PROD and then change they passwords to whatever you want manually.
answered yesterday
Marek Musielak
9,19811034
There is a config settings you can use called SerializationPassword.
Just use a config patch file with
<settings>
<setting name="SerializationPassword" value="Secret!@#" />
</settings>
and deserialize your serialized users after.
Sitecore will set all your new users' passwords to Secret!@# (or whatever value you want) instead of default b which is used when the setting is not present.
You can deserialize you users in PROD and then change they passwords to whatever you want manually.
answered yesterday
Marek Musielak
9,19811034
edited yesterday
answered yesterday
Marek Musielak
9,19811034
answered yesterday
Marek Musielak
9,19811034
answered yesterday
Marek Musielak
9,19811034
9,19811034
1
That sounds exactly like what I need! I will let you know if it worked.
– Markus
yesterday
It works, I can use Powershell to serialize & deserialize the users now. Thanks! One issue I had was that my SQL Server went down when I used a randomly generated strong password. The setting might be insufficiently escaped, so be careful. It might also be an unrelated issue on my DEV machine though.
– Markus
yesterday
Sitecore usesMembership.CreateUser(userName, password);by default. I don't see any reason why it could cause your SQL Server to go down even with the most sophisticated password. I suppose it was not related to deserialization of your users.
– Marek Musielak
yesterday
add a comment |
1
That sounds exactly like what I need! I will let you know if it worked.
– Markus
yesterday
It works, I can use Powershell to serialize & deserialize the users now. Thanks! One issue I had was that my SQL Server went down when I used a randomly generated strong password. The setting might be insufficiently escaped, so be careful. It might also be an unrelated issue on my DEV machine though.
– Markus
yesterday
Sitecore usesMembership.CreateUser(userName, password);by default. I don't see any reason why it could cause your SQL Server to go down even with the most sophisticated password. I suppose it was not related to deserialization of your users.
– Marek Musielak
yesterday
1
1
That sounds exactly like what I need! I will let you know if it worked.
– Markus
yesterday
That sounds exactly like what I need! I will let you know if it worked.
– Markus
yesterday
It works, I can use Powershell to serialize & deserialize the users now. Thanks! One issue I had was that my SQL Server went down when I used a randomly generated strong password. The setting might be insufficiently escaped, so be careful. It might also be an unrelated issue on my DEV machine though.
– Markus
yesterday
It works, I can use Powershell to serialize & deserialize the users now. Thanks! One issue I had was that my SQL Server went down when I used a randomly generated strong password. The setting might be insufficiently escaped, so be careful. It might also be an unrelated issue on my DEV machine though.
– Markus
yesterday
Sitecore uses
Membership.CreateUser(userName, password); by default. I don't see any reason why it could cause your SQL Server to go down even with the most sophisticated password. I suppose it was not related to deserialization of your users.– Marek Musielak
yesterday
Sitecore uses
Membership.CreateUser(userName, password); by default. I don't see any reason why it could cause your SQL Server to go down even with the most sophisticated password. I suppose it was not related to deserialization of your users.– Marek Musielak
yesterday
add a comment |
up vote
0
down vote
Sitecore membership is based on ASP.Net membership. It means that you can use same approach for moving users from one DB to another. It is low-level actions with data that could give you better understanding how users/roles information is managed in Sitecore.
- Open Microsoft SQL Server Management Studio
- Connect to SQL server with Sitecore Core QA database
- Click right mouse button on Sitecore Core QA database, select "Generate scripts..." from context menu
- Select all tables, where name starts with "aspnet_" on first page of wizard
- Click "Advanced" button on second page of wizard. Select "Types of data to script":"Data only", "Script DROP and CREATE":"Script DROP and CREATE"
- Generate script
- Backup Sitecore Core Production Database
- Run script generated from Core QA database on Core Production database
answered yesterday
Anton
1,501213
I know that I can transfer users on a DB level, but that is not what I want to do.
– Markus
yesterday
add a comment |
up vote
0
down vote
Sitecore membership is based on ASP.Net membership. It means that you can use same approach for moving users from one DB to another. It is low-level actions with data that could give you better understanding how users/roles information is managed in Sitecore.
- Open Microsoft SQL Server Management Studio
- Connect to SQL server with Sitecore Core QA database
- Click right mouse button on Sitecore Core QA database, select "Generate scripts..." from context menu
- Select all tables, where name starts with "aspnet_" on first page of wizard
- Click "Advanced" button on second page of wizard. Select "Types of data to script":"Data only", "Script DROP and CREATE":"Script DROP and CREATE"
- Generate script
- Backup Sitecore Core Production Database
- Run script generated from Core QA database on Core Production database
answered yesterday
Anton
1,501213
I know that I can transfer users on a DB level, but that is not what I want to do.
– Markus
yesterday
add a comment |
up vote
0
down vote
up vote
0
down vote
Sitecore membership is based on ASP.Net membership. It means that you can use same approach for moving users from one DB to another. It is low-level actions with data that could give you better understanding how users/roles information is managed in Sitecore.
- Open Microsoft SQL Server Management Studio
- Connect to SQL server with Sitecore Core QA database
- Click right mouse button on Sitecore Core QA database, select "Generate scripts..." from context menu
- Select all tables, where name starts with "aspnet_" on first page of wizard
- Click "Advanced" button on second page of wizard. Select "Types of data to script":"Data only", "Script DROP and CREATE":"Script DROP and CREATE"
- Generate script
- Backup Sitecore Core Production Database
- Run script generated from Core QA database on Core Production database
answered yesterday
Anton
1,501213
Sitecore membership is based on ASP.Net membership. It means that you can use same approach for moving users from one DB to another. It is low-level actions with data that could give you better understanding how users/roles information is managed in Sitecore.
- Open Microsoft SQL Server Management Studio
- Connect to SQL server with Sitecore Core QA database
- Click right mouse button on Sitecore Core QA database, select "Generate scripts..." from context menu
- Select all tables, where name starts with "aspnet_" on first page of wizard
- Click "Advanced" button on second page of wizard. Select "Types of data to script":"Data only", "Script DROP and CREATE":"Script DROP and CREATE"
- Generate script
- Backup Sitecore Core Production Database
- Run script generated from Core QA database on Core Production database
answered yesterday
Anton
1,501213
answered yesterday
Anton
1,501213
answered yesterday
Anton
1,501213
answered yesterday
Anton
1,501213
1,501213
I know that I can transfer users on a DB level, but that is not what I want to do.
– Markus
yesterday
add a comment |
I know that I can transfer users on a DB level, but that is not what I want to do.
– Markus
yesterday
I know that I can transfer users on a DB level, but that is not what I want to do.
– Markus
yesterday
I know that I can transfer users on a DB level, but that is not what I want to do.
– Markus
yesterday
add a comment |
up vote
0
down vote
One addition to Mareks answer:
Unfortunately the logic for passwords in package deserialization is completely different. It uses a class called PasswordGenerator, which is initialized with the following parameters:
MinimumCharacters = 6;
MaximumCharacters = 8;
ConsecutiveCharacters = false;
RepeatCharacters = true;
ExcludeSymbols = true;
So if your password policy requires longer passwords or symbols, this functionality is pretty much unusable.
answered 15 hours ago
Markus
23928
add a comment |
up vote
0
down vote
One addition to Mareks answer:
Unfortunately the logic for passwords in package deserialization is completely different. It uses a class called PasswordGenerator, which is initialized with the following parameters:
MinimumCharacters = 6;
MaximumCharacters = 8;
ConsecutiveCharacters = false;
RepeatCharacters = true;
ExcludeSymbols = true;
So if your password policy requires longer passwords or symbols, this functionality is pretty much unusable.
answered 15 hours ago
Markus
23928
add a comment |
up vote
0
down vote
up vote
0
down vote
One addition to Mareks answer:
Unfortunately the logic for passwords in package deserialization is completely different. It uses a class called PasswordGenerator, which is initialized with the following parameters:
MinimumCharacters = 6;
MaximumCharacters = 8;
ConsecutiveCharacters = false;
RepeatCharacters = true;
ExcludeSymbols = true;
So if your password policy requires longer passwords or symbols, this functionality is pretty much unusable.
answered 15 hours ago
Markus
23928
One addition to Mareks answer:
Unfortunately the logic for passwords in package deserialization is completely different. It uses a class called PasswordGenerator, which is initialized with the following parameters:
MinimumCharacters = 6;
MaximumCharacters = 8;
ConsecutiveCharacters = false;
RepeatCharacters = true;
ExcludeSymbols = true;
So if your password policy requires longer passwords or symbols, this functionality is pretty much unusable.
answered 15 hours ago
Markus
23928
answered 15 hours ago
Markus
23928
answered 15 hours ago
Markus
23928
answered 15 hours ago
Markus
23928
23928
add a comment |
add a comment |
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsitecore.stackexchange.com%2fquestions%2f15060%2fhow-to-transfer-users-with-active-password-policy%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
1
Have you tried using packages? When you use serialization, password is always set to
b, with packages, random password is generated. Maybe try to set password policy requirements on QA first and then generate package with users?– Marek Musielak
yesterday
Same applies to Packages, none of the users are imported. Is there a Setting of how random passwords are generated?
– Markus
yesterday
2
kb.sitecore.net/articles/242631 did you try this solution ?
– Vlad Iobagiu
yesterday
I have not. Since the users are not imported at all, I probably won't be able to sync the passwords. Anyway, I don't want to transfer users on DB Level since this is exactly what the user migration is supposed to do... at least that's what I think :-)
– Markus
yesterday