Siebel Security Guide > Changing or Adding Passwords >

Encrypting Passwords Using the encryptstring Utility

Using the Siebel Configuration Wizard to change an anonymous user password, or the Siebel Enterprise security token, automatically saves the password in encrypted form. If, however, you have to manually add an encrypted value for the corresponding parameters in the eapps.cfg file (AnonPassword or SiebEntSecToken), use the encryptstring.exe utility to generate the encrypted value to provide as the parameter value.

NOTE:  If you want to use different database accounts for the anonymous user for different applications, you must manually update the eapps.cfg file.

The encryptstring utility is installed with both the Siebel Server and the SWSE. It is located in the SIEBSRVR_ROOT\bin and SWEAPP_ROOT\bin directories, where SIEBSRVR_ROOT is the Siebel Server installation directory, and SWEAPP_ROOT is the SWSE installation directory.

To generate as output an encrypted value for a password, enter the following command:

encryptstring clear_text_password

For example, if you want to store the encrypted version of GUESTCST, a password you might initially specify for the anonymous user account, you would enter:

encryptstring GUESTCST

The command output in this case might be something like fhYt8T9N4e8se4X3VavTjQXwAEqm. (The specific value that is output changes each time you use the encryptstring utility.)

NOTE:  Although the anonymous user has limited privileges, it is generally recommended to use more secure passwords for production deployments of your Siebel Business Applications. The topic Changing Passwords describes changing passwords for database accounts and also for corresponding values in parameters stored on the Siebel Gateway Name Server. For anonymous user accounts, changing passwords involves changing passwords for database accounts and changing passwords in the eapps.cfg file.