Using XPSConfig to change Admin Password results in clear text passwords in sm.registry
search cancel

Using XPSConfig to change Admin Password results in clear text passwords in sm.registry

book

Article ID: 54405

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

Description:

Passwords are stored in clear text when using XPSConfig for AdminPasswords changings.

Example:
Changing DbLogAdminPassword leads to clear text password value in:
HKEY_LOCAL_MACHINE\SOFTWARE\Netegrity\SiteMinder\CurrentVersion\Database\Log\Password

Solution:

Passwords should be further set and changed by using SiteMinder Policy Server Management Console.

Starting with r12 SP1 CR4, XPSConfig utility will store passwords as RC2 encrypted values, too in sm.registry.

Environment

Release:
Component: SMPLC
Powered by Wolken Software