Change Passwords Within Symantec Security Information Manager
Last Updated February 15, 2017
One of the following passwords need to be reset (<sesuser>, <symcmgmt>, <simuser>, <dasusr1>, <db2admin>, <ldapdb2>, <root>, and <cn=root>).
If passwords need to be changed on the Symantec Security Information Manager box after installation, the following procedures are authorized.
To change the password for symcmgmt:
Open then SSIM Client and login as "administrator".
Next, navigate to System Tile > Administration Tab > DataStores, right-click on DataStore name, and select Properties.
Click the Connection tab and enter the new password for Password, then retype it in Confirm Password. Once the change has been made, click Save and then OK.
Connect to SSIM with an SSH Client such as Putty (or login to a console as root).
Login as db2admin, obtain the root's environment by typing the command su - and then type the root's password when prompted.
Change the symcmgmt password with the command:passwd symcmgmt
Changing passwords for other SSIM Linux accounts
(Changing the password for <simuser>, <sesuser>, <dasusr1>, <db2admin>, <ldapdb2>, and <root> usernames SSIM WebGUI)
Open a web browser, go to Symantec Security Information Manager Web Interface, and login as administrator.
In SSIM 4.7.x, navigate to the Settings > Passwords (in SSIM 4.6.x: Password Management > Change Password).
Fill out the fields to change the username password.
Confirm New Password:
Click Change Password to apply the change.
NOTE: Changing the passwords for these accounts should never be done through in the command line interface (CLI) using the "passwd" command. Any deviation from these established procedures will result in substantial slowdown/failure in loading the SSIM GUI console and will be reflected in the eventservice.log showing connection/authorization errors. This is a correction to the Administrators guide reference for changing passwords.
To change cn=root accounts password
Bring up a command window using the (or through Dell Remote Access Card) SSHputty application. Login as db2admin, then obtain the root's environment by typing the command: su -
Invoke the following command to stop the IBMLDAP service:
# service ibmldap stop
Once the service has stopped, invoke the following command to change the cn=root password:
When prompted to "Enter the directory server administrator password:", begin typing in the new cn=root password. The password will not echo or appear on the screen. Afterwards the following lines will be displayed:
# You have chosen to perform the following actions: GLPDPW005I The directory server administrator password will be set. Do you want to.... (1) Continue with the above actions, or (2) Exit without making any changes:
At the prompt choose option (1).The following lines will be displayed afterwards confirming password change:
GLPDPW006I Setting the directory server administrator password. GLPDPW007I Set the directory server administrator password. # "
Start the IBMLDAP service by invoking the following command:
# service ibmldap start
Once the service has restarted, the password will be changed. Note: To verify if the password is changed, before you stop the ibmldap service, type the following command at the prompt: