Question & Answer
Question
How to change the password for the Directory Service Account?
Answer
The Directory Service account and password are used in two places: FileNet Enterprise Manager (FEM), and on the application server. A coordinated update procedure must be followed when there is a need to change the password on the account. If the account is also used as the Global Configuration Database administrator's password, then the BootstrapConfig.properties file on the Content Engine must also be updated.
1. Launch FileNet Enterprise Manager and the application server administrative console.
a. Login to FileNet Enterprise Manager using the Directory Service account.
b. Login to the application server administrative console with an administrator account.
Important: Do not close applications until you have completed step 5 in this procedure.
2. Change the password on the LDAP server.
3. Change the password in FileNet Enterprise Manager.
a. Go to Domain properties.
b. Navigate to Directory Configuration > Select Directory Configuration.
c. Click modify
d. On the General tab, navigate to Change Directory Service User, then click the Change password check box
e. Enter the new password.
f. Click OK.
The following message displays:
These changes require the application server to be restarted. Please restart the application server to incorporate these changes
g. Click OK twice.
Important: Do not restart the application server until you have completed step 5.
4. Change the password in the directory configuration settings on the application server.
- For WebSphere, go to Global Security > click LDAP under User Registry > Change server user >
Change server password > Change bind user > change bind password > click OK and Save your changes.
- For WebLogic, go to Security Realms > myrealm > Providers > LDAP provider and click
Provider Specific tab. Change the Principal and Credential settings.
- For JBoss, go to the <JBoss Home>\server\<CE Server>\conf directory and edit the login-config.xml file.
Find the FileNet application-policy setting, and in the login module, change the bindDN/bindCredential values.
5. Change Content Engine Bootstrap password
f. Click OK.
The following message displays:
These changes require the application server to be restarted. Please restart the application server to incorporate these changes
g. Click OK twice.
Important: Do not restart the application server until you have completed step 5.
4. Change the password in the directory configuration settings on the application server.
- For WebSphere, go to Global Security > click LDAP under User Registry > Change server user >
Change server password > Change bind user > change bind password > click OK and Save your changes.
- For WebLogic, go to Security Realms > myrealm > Providers > LDAP provider and click
Provider Specific tab. Change the Principal and Credential settings.
- For JBoss, go to the <JBoss Home>\server\<CE Server>\conf directory and edit the login-config.xml file.
Find the FileNet application-policy setting, and in the login module, change the bindDN/bindCredential values.
5. Change Content Engine Bootstrap password
Refer to the following topic to update the BootstrapConfig.properties file:
https://www.ibm.com/docs/en/filenet-p8-platform/5.2.0?topic=how-change-bootstrap-admin-password
6. Remove the cached files the application server
- Close FileNet Enterprise Manager.
- Close the application server administrative console.
- Stop the application server.
- Remove the cached FileNetEngine directory on the application server.
7. Restart the application server, and login to FileNet Enterprise Manager using the new password.
8. Recover from mistakes.
If the Content Engine fails to start due to a mistake in the change procedure, you may not be able to redo the change using FileNet Enterprise Manager. If this happens, use the following procedure:
- Deleting the latest row in the FNGCD table to back out the change made to Global Configuration Database in step 3.
- Change the directory service password on the LDAP server back to the previous one.
- Back out the change made to application server (step 4) by redoing the procedure using the previous password.
- Back out the change made to the BootstrapConfig.properties file by redoing the procedure in step 5 with the previous password.
- Restart the application server, and login to FileNet Enterprise Manager using the previous password.
[{"Product":{"code":"SSNVNV","label":"FileNet Content Manager"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"Content Engine","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"}],"Version":"4.0;4.0.1;4.5;4.5.1;5.0","Edition":"Enterprise","Line of Business":{"code":"LOB45","label":"Automation"}}]
Was this topic helpful?
Document Information
Modified date:
27 April 2021
UID
swg21305158