search cancel

Unable to update Directory Server Credentials for External Administration Store


Article ID: 133711


Updated On:


CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On Agents (SiteMinder) CA Single Sign On Federation (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On SITEMINDER


\\AdminUI\SiteMinder\adminui\bin>smjndisetup.bat --reset-password The Administrative UI service must be stopped in order to continue.

Would you like to stop the service now? [y,n]: >y

The Administrative UI service is being stopped.............

Enter the user name (hit Enter to accept the default 'useraccount1'): >useraccount1

Enter the password: > Feb 21, 2019 8:48:03 AM setupSSLProperties INFO: Initialised in non peer authenticated TLS mode The user name 'useraccount1' and supplied password are invalid for the directory 'LDAP'; please try again.


Release :



This is not a bug in product. 

By default those jars will be available under modules (in sub folders) folder in <Siteminder_installed_location>\adminui.

While running smjndisetup.bat to reset password, internally these modules folder will not be available to this utility. Hence we are asking to copy these jars manually to "Siteminder_install_location\adminui\runtime\jre\lib\ext" folder. 

So that, these jars will be picked by smjndisetup.bat while execution.


1. Copy these two jars (bc-fips-1.0.0.jar & bcpkix-fips-1.0.0.jar) from "Siteminder_install_location\adminui\modules\system\layers\base\org\bouncycastle\main" to "Siteminder_install_location\adminui\runtime\jre\lib\ext".

2. Run smjndisetup.bat --reset-password.

3. Give the user

4. Give the new password (which is already updated in AD).

5. Password change should succeed.

6. Check with logging into WAMUI with new credentials. It should be able to login now.