The following procedure describes how to set up the encrypted passwords for a Distributed Authentication UI server that communicates with an Access Manager server.
To set up the passwords for a Distributed Authentication UI server:
On the Access Manager server:
Encrypt the amadmin password using the ampassword -e utility. For example, on Solaris systems:
# cd /opt/SUNWam/bin # ./ampassword -e amadmin-password AQIC0K3omEozd544XEJIg25GT2wi1D7UAQLX
Save this encrypted value.
Copy and save the am.encryption.pwd property value from the Access Manager server's AMConfig.properties file. For example:
am.encryption.pwd=ydV8JXhJF2J35vpxjZRiGt7SH/7mUr+Y
On the Distributed Authentication UI server, make these changes to the AMConfig.properties file:
Comment out the com.iplanet.am.service.password property.
Set the com.iplanet.am.service.secret property to the encrypted amadmin password from Step 1a.
Add the am.encryption.pwd and encrypted value that you copied from Step 1b. For example:
com.sun.identity.agents.app.username=username #com.iplanet.am.service.password=password com.iplanet.am.service.secret=AQIC0K3omEozd544XEJIg25GT2wi1D7UAQLX am.encryption.pwd=ydV8JXhJF2J35vpxjZRiGt7SH/7mUr+Y
Restart the Distributed Authentication UI server.