The configuration of CEM requires the parameter CEME_DBU_PASS  to be specified. This is for LDAP.  However, specification of the password, and its visibility is posing an audit violation.  Is this password actually required for LDAP  for connection purposes?

Release : 6.0

Component : CA COMPLIANCE EVENT MANAGER

Unless you want to interface with CEM's Compatibility UI,  you can comment out those lines for the DBUID and DBUPASS parameters in LDAP's CEMESLPC configuration member.  Also, if you do plan on using CEM's Compatibility UI you can encrypt the password into a file read by LDAP.  Please review the LDAP documentation for information on how to setup this process of encryption.