Previous Topic: Change the Password in the login-config.xml FileNext Topic: Enterprise Administration Guide


Change the User Directory Password in the CA Identity Minder Management Console

You change the user directory password in the CA Identity Minder Management Console when you change the ADS_LDAP_bind_user password. You may need to regularly change the password for this account to comply with your organization's security and password policies.

Note: You may need to use more than one method to change the password on all components that the service account interacts with.

To change the user directory password in the CA Identity Minder Management Console

  1. Encrypt the clear text password.
  2. Open the CA Identity Minder Management Console.
  3. Click Directories.

    The Directories page appears.

  4. Click ac-dir.

    The Directory Properties page appears.

  5. Click Export.

    The ac-dir.xml file is exported.

  6. Open the exported file in a text-based editor.
  7. Find the following parameter:
    <Credentials user=
    
  8. Enter the encrypted password in the following field, which is after the <credentials> parameter:
    {PBES}=
    
  9. Save and close the file.
  10. In the CA Identity Minder Management Console, from the Directory Properties page, click Update.

    The Update Directory window appears.

  11. Type the path and file name of the XML file that you edited, or browse for the file, then click Finish.

    Status information is displayed in the Directory Configuration Output field.

  12. Click Continue, and restart the environment.

    You have changed the user directory password in the CA Identity Minder Management Console.

Example: Change the User Directory Password

This snippet of the exported ac-dir.xml file shows you the changed user directory password. The user is named Administrator. The password has been encrypted and is }>8:Jt^+%INK&i^v:

<Credentials user="CN=Administrator,cn=Users,DC=unixauthdemo,DC=co,DC=il">
{PBES}:}>8:Jt^+%INK&i^v==</Credentials>

More information:

Enable the CA Identity Minder Management Console

Open the CA Identity Minder Management Console

Change the ADS_LDAP_bind_user Password