Installation Manual
HP Storage Essentials SRM 6.0 Installation Guide 369
To change the password of a system account:
1. If you are changing the SIM_MANAGER password and HP SIM and HP SE are using the same
Oracle database, you must complete the following steps.:
a. Log onto the server running HP Systems Insight Manager.
b. Stop the AppStorManager service if it is started.
c. Enter the following at the command prompt:
C:\> mxpassword -m -x MxDBUserPassword=mynewPass
where mynewPass is your new password for the database.
d. Stop the HP Systems Insight Manager service so that it cannot access the database. It is very
important that the HP Systems Insight Manager service does not access the database before
you are finished with changing the password for the database.
2. Access the Database Admin Utility.
3. Click Change Passwords in the left pane.
4. Select an account name from the User Name box.
5. Enter the current password in the Old Password box.
6. Enter the new password in the New Password box.
7. Re-enter the password in the Confirm Password box.
8. Click Change.
The Database Admin Utility changes the password for the specified account.
Using Active Directory/LDAP for Authentication
NOTE: Active Directory/LDAP is not supported with Storage Essentials Standard Edition.
The management server supports external authentication through Active Directory (AD) and
Lightweight Directory Access Protocol (LDAP) directory services. When you configure the
management server to use external authentication, user credentials are no longer stored in the
management server database. This configuration centralizes all security related requirements to the
enterprise AD/LDAP infrastructure, such as password expiration, resets, and complexity
requirements.
When a user attempts to log into the management server, the management server authenticates the
user name and password against AD/LDAP for credential verification. If AD/LDAP verifies that this
user has the correct credentials, the management server allows this user access to the application.
Keep in mind the following:
• The login-handler.xml file contains configuration information for both AD and LDAP. It is
important to enable either AD or LDAP; you cannot enable both.
• If you want to go back and forth between internal and external (AD/LDAP) authentication,
rename the login-handler.xml file before you modify it. This way you can easily switch
back to internal authentication by changing the file name back to login-handler.xml.
To use AD/LDAP to authenticate your users, complete the following procedures: