Previous Topic: Change the RDBMS_service_user PasswordNext Topic: Change the +reportagent Password

Implementation GuideChanging CA ControlMinder Service Account SettingsService Account PasswordsChange the reportserver Password

Change the reportserver Password

CA ControlMinder Enterprise Management and the DMS use the reportserver account to connect to the Message Queue.

CA ControlMinder Enterprise Management uses the reportserver account to do the following:

The DMS uses the reportserver account to do the following:

You may need to regularly change the reportserver password to comply with your organization's security and password policies. You must change the password on the Distribution Server, Enterprise Management Server, and DMS.

Before you change the reportserver password, note the following:

Important! If you have more than one Distribution Server in your enterprise, first change the password on the Distribution Server installed on the Enterprise Management Server, then change the password on the other Distribution Servers in your enterprise.

To change the reportserver password

  1. On the Distribution Server, set the Message Queue password for the reportserver user.

    You have changed the reportserver password on the Distribution Server.

  2. Change the password on the Enterprise Management Server, as follows:
    1. Stop JBoss Application Server.
    2. Encrypt the clear text password.
    3. Change the password in the properties-service.xml file.
    4. Change the password in the login-config.xml file.
    5. Restart JBoss Application Server.
    6. Verify that you can log in to CA ControlMinder Enterprise Management.

      JBoss is successfully started and the password on the Enterprise Management Server is changed.

  3. Use sechkey to change the reportserver password on the DMS.

    The reportserver password is changed in all locations.

Example: Set the Message Queue Password For the reportserver User

This Tibco EMS Administration Tool command sets the Message Queue password for the reportserver user. The password is "secret", and must be in clear text and enclosed in double quotes:

ssl://localhost:7243> set password reportserver "secret"
Password of user 'reportserver' has been modified
ssl://localhost:7243>

Example: Change the Password in the properties-service.xml File

This snippet of the properties-service.xml file shows you the changed reportserver password. The password has been encrypted and is }>8:Jt^+%INK&i^v:

    <attribute name="Properties">      
	  SamMDB.mdb-user=reportserver
	  <!-- encoded tibco password -->
	  SamMDB.mdb-passwd={AES}:}>8:Jt^+%INK&i^v==
    </attribute>

Example: Change the Password in the login-config.xml File

This snippet of the login-config.xml file shows you the changed reportserver password. The password has been encrypted and is }>8:Jt^+%INK&i^v:

<application-policy name="JmsXATibcoRealm">
       <authentication>
          <login-module code="com.netegrity.jboss.datasource.PasswordEncryptedLogin" flag="required">          
             <module-option name="userName">reportserver</module-option>
	   <module-option name="password">{AES}:}>8:Jt^+%INK&i^v==</module-option>            
		<module-option name="managedConnectionFactoryName">
		jboss.jca:service=TxCM,name=TibcoJmsXA</module-option>
          </login-module>
       </authentication>
    </application-policy>

Example: Use sechkey to Change the Message Queue Password on the DMS

This command changes the Message Queue password on the DMS. The password is "secret", and must be in clear text and enclosed in double quotes:

sechkey -t -server -pwd "secret"