1. Installation Guide
  2. Updating the Siebel Server System Service and Server Components to Use AES Password Encryption

Updating the Siebel Server System Service and Server Components to Use AES Password Encryption

The Siebel Server system service and server components do not work after a migration installation until you have performed steps to update them to use AES password encryption, as described in the following procedure. Most of the command examples in the procedure are for LINUX operating systems, but the same issue applies on Microsoft Windows.

This task is part of Additional Tasks for Migration Installations.

To update the Siebel Server system service and server components to use AES password encryption

  1. Unset any SIEBEL* environment variables.

  2. Source the siebenv script from the Siebel Gateway installation directory, as follows:

    ./siebenv.sh

  3. Start the Siebel Gateway and make sure that it is running.

  4. Write down the old encrypted password from the current siebns.dat file. For example:

    [/enterprises/esia81/parameters/Password]
Persistence=full
Type=string
Value="9ntkUOUf"
Length=16

  5. Run a command like the following, using the old encrypted password value: 

    SIEBEL_ROOT/siebsrvr/lib/spu 9ntkUOUf

    This command obtains a reencrypted value for the password, such as in the following output:

    ENPVR6S/HKgBncoAAA==

  6. Delete the current svc* and osdf* files from the SIEBSRVR_ROOT/sys directory.

  7. Source the siebenv script from the SIEBSRVR_ROOT directory.

  8. Change directory to the SIEBSRVR_ROOT/bin directory and then run a command like the following: 

    siebctl -S siebsrvr -i esia81:srvr1 -a -g "-g localhost:2320 -e esia81 -s srvr1 
-u SADMIN -ep ENPVR6S/HKgBncoAAA=="

    Note that the new encrypted string from Step 5 is used.

  9. Run the following command using the old encrypted password value, like the following: 

    $SIEBEL_ROOT/siebsrvr/lib/gpu -g localhost:2320 -e esia81 -u SADMIN -p 9ntkUOUf

  10. Customers who have overridden the user name or password at the component definition level must change the passwords again through srvrmgr in order to use the new encrypted password value. For example:

    change param password=<pwd_value> for compdef <comp_name> 
change param password=<pwd_value> for comp <comp_name> server <server_name>

  11. Update old encrypted passwords on the Siebel Gateway to use AES encryption.

    For more information, see Siebel Security Guide.

  12. Restart both the Siebel Gateway and the Siebel Server.