Managing UsersPassword Management › Change the System User Password for Active Directory Security

Previous Topic: Change the System User Password for Native Security

Next Topic: Tasks for External Directory Users

Change the System User Password for Active Directory Security

If your CA Virtual Assurance installation is configured to connect to Active Directory, the user who installs CA Virtual Assurance is automatically registered with CA Embedded Entitlements Manager. This registration allows CA Virtual Assurance to authenticate users from the Active Directory domain. If the user password changes, users cannot log in to the CA Virtual Assurance user interface because CA Embedded Entitlements Manager can no longer authenticate them. Change the user password as follows:

To change the user password for Active Directory

  1. Navigate to Start, Programs, CA, Embedded Entitlements Manager, EEM UI and open the user interface.

    The login dialog appears.

  2. Log in with the current password.

    The user interface opens.

  3. Click Configure and EEM Server.

    The EEM Server pane appears.

  4. Click Global Users/Global Groups in the left pane and retain default option "Reference from an external directory" selected.
  5. Retain default Type as Microsoft Active Directory and enter a new password in the Password and Confirm Password fields and click Save.
  6. Close CA Embedded Entitlements Manager
  7. Navigate to Start, Programs, CA, CA Virtual Assurance, CA Virtual Assurance Command Prompt.

    The command prompt appears.

  8. Enter the following command: 
    dpmutil -set -sysuser

    Sysuser is the same user who installs CA Virtual Assurance. The dpmutil command prompts you for the required credentials specified in Step 5.

    Complete the command.

  9. Recycle the CAAIPApache  and CAIPTomcat services.

    The credentials are now consistent and CA Virtual Assurance works as expected.

Note: In both cases the Apache log file, located at Install_path\Apache\logs\error.log, can confirm proper product startup. If the last entry is “Validating EEM is available,” then there is still a credential problem. Verify that the credentials used for ‘-set -eiam’ and ‘-set -sysuser’ can be used to log in to the CA Embedded Entitlements Manager UI. Retry the dpmutil commands using valid credentials.