Changing the Key File Password

The key file is encrypted with the key file password, which is supplied by the Admin user. To prevent unauthorized access, you can change the key file password using the Key Database Manager utility. The key file is re-encrypted using a new encryption key generated from the new key file password.

Before using AES encryption for the first time, change the key file password, because all versions of the Key Database Manager utility are shipped with the same default password. The default key file password is kdbpass. Consider changing the key file password regularly to make sure the file is secured.

Caution: You must back up the key file before making changes to it. If the key file is lost or damaged, then it is not possible to recover the encrypted data without a backup key file.

To change the key file password

1. Shut down any server components that are configured to use encryption.

2. Run the Key Database Manager utility from the bin subdirectory in the Siebel Server directory.

   For more information, see Managing the Key File Using the Key Database Manager.

3. To change the key file password, enter 1.

4. Enter the new password.

5. Confirm the new password.

6. Exit the utility by entering 3.

   When exiting the Key Database Manager utility, monitor any error messages that might be generated. If an error occurs, then you might have to restore the backup version of the key file.

7. Distribute the new key file to all Siebel Servers by copying the file to the admin subdirectory in the Siebel Server root directory.

8. Restart any server components that were shut down in the first step of this procedure.

   For information on starting server components, see Siebel System Administration Guide.