search cancel

APM Password encryption Utility Usage

book

Article ID: 139049

calendar_today

Updated On:

Products

CA IT Asset Manager CA IT Asset Manager Asset Portfolio Management CA Software Asset Manager (CA SAM) ASSET PORTFOLIO MGMT- SERVER

Issue/Introduction

The mdbadmin user is a user defined in the backend database server to access the given MDB database.  Occasionally, the mdbadmin's password needs to be reset on the given DB Server for a variety of reasons.  

This article discusses where the mdbadmin user credentials are stored and how to encrypt for a new password configuration.

Environment

Release : 14.1 and higher 

Component : CA Asset Portfolio Management

Resolution

The mdbadmin password is located in the following places and uses two different methods to encrypt the database:

  • Within the backend MDB database. (uses Method 2 to encrypt the mdbadmin password)
    You can see the existing password entry for the mdbadmin credential set by running these SQL commands against the mdb database:
    SELECT * FROM [mdb].[dbo].[al_cdb_configurationparameters] where configkey = 'DbPassword'
  • The db_credentials.xml file (uses Method 1 to encrypt the mdbadmin password).
    File is located in C:\Program Files (x86)\CA\SharedComponents\CASM\Conf\db
  • The CA.Common.LoadConfigurationAttributes.dll.config and CA.Common.Data.dll.config (uses Method 2 to encrypt the mdbadmin password)
    The above file is located in these areas of ITAM's install directory.
    C:\Program Files (x86)\CA\ITAM\Hardware Engine\CA.Common.LoadConfigurationAttributes.dll.config
    C:\Program Files (x86)\CA\ITAM\Registration Service\CA.Common.LoadConfigurationAttributes.dll.config
    C:\Program Files (x86)\CA\ITAM\Application Server\bin\CA.Common.LoadConfigurationAttributes.dll.config
    C:\Program Files (x86)\CA\ITAM\Data Importer Engine\CA.Common.LoadConfigurationAttributes.dll.config
    C:\Program Files (x86)\CA\ITAM\Event Service\CA.Common.LoadConfigurationAttributes.dll.config
    C:\Program Files (x86)\CA\ITAM\Export Service\CA.Common.Data.dll.config
    C:\Program Files (x86)\CA\ITAM\Export Service\CA.Common.LoadConfigurationAttributes.dll.config
    C:\Program Files (x86)\CA\ITAM\Hardware Engine\CA.Common.LoadConfigurationAttributes.dll.config
    C:\Program Files (x86)\CA\ITAM\Import Driver\CA.Common.LoadConfigurationAttributes.dll.config
    C:\Program Files (x86)\CA\ITAM\Import Processor\CA.Common.LoadConfigurationAttributes.dll.config
    C:\Program Files (x86)\CA\ITAM\Import Service\bin\CA.Common.LoadConfigurationAttributes.dll.config
    C:\Program Files (x86)\CA\ITAM\LDAP Import Sync Service\CA.Common.Data.dll.config
    C:\Program Files (x86)\CA\ITAM\LDAP Import Sync Service\CA.Common.LoadConfigurationAttributes.dll.config
    C:\Program Files (x86)\CA\ITAM\Registration Service\CA.Common.LoadConfigurationAttributes.dll.config
    C:\Program Files (x86)\CA\ITAM\Storage Manager Service\bin\CA.Common.Data.dll.config
    C:\Program Files (x86)\CA\ITAM\Storage Manager Service\bin\CA.Common.LoadConfigurationAttributes.dll.config
    C:\Program Files (x86)\CA\ITAM\WCF Service\bin\CA.Common.LoadConfigurationAttributes.dll.config
    C:\Program Files (x86)\CA\ITAM\Web Server\bin\CA.Common.Data.dll.config
    C:\Program Files (x86)\CA\ITAM\Web Server\bin\CA.Common.LoadConfigurationAttributes.dll.config

There are two methods to encrypt the mdbadmin password.  Both methods are unique and apply to different aspects of the ITAM installation.

Method 1:

One will need the ITAM install media (ISO file or DVD)

- Mount the ISO or load the DVD for the ITAM install

- Assuming the install media is located on the F Drive, go to an Admin command prompt and cd to "F:\products\ITAM\Setups\CASM"

- Run the following command:

java -jar stringencrypter.jar PASSWORD1

Change "PASSWORD1" to be the password for the mdbadmin user in SQL Server

An output will present such as this:

F:\products\ITAM\Setups\CASM>java -jar stringencrypter.jar PASSWORD1

log4j:WARN No appenders could be found for logger (com.ca.crypto.impl.EncryptionUtil).

log4j:WARN Please initialize the log4j system properly.

log4j:WARN See http://logging.apache.org/log4j/1.2/faq.html#noconfig for more info.

ciphered text : AAAAEFLlzgVXVgxbKrwbCjPQCJ3tJwMs134GGtk8ArAy0ZQV

- Copy the ciphered text string (ie:  AAAAEFLlzgVXVgxbKrwbCjPQCJ3tJwMs134GGtk8ArAy0ZQV)


Method 2:

Use the APM Password encryption utility, which can be downloaded in the files attached to this KB Article.  File of interest is 1599158575305__RO72722.caz.  Please review KB Article 15519 for access to CAZIPXP.EXE to extract the CAZ zip file.

Additional Information

Additional content for the APM Password encryption utility is also available in the files attached to this KB Article.  File of interest is 1599158591276__RO72722.txt

Attachments

1599158591276__RO72722.txt get_app
1599158575305__RO72722.caz get_app