Installation guide
Shared Secret Encryption Utility
Chapter 2 Policy Agents on Solaris and HP-UX 55
Shared Secret Encryption Utility
The policy agent stores the shared secret in the AMAgent.properties file. By
default, this password is the Identity Server internal LDAP authentication user
password. This can be changed on the server side by editing the
AMConfig.properties file.
Theproperty com.sun.am.policy.am.password in the AMAgent.properties file
is set with the encrypted shared secret while installing the agent.
To reset or change the shared secret, you can use the following utility and set the
value in the property.
1. Go to the following directory:
Agent_Install_Dir/bin
2. Execute the following script from the command line:
# ./crypt_util shared_secret
3. Cut and paste the output from Step 2 in the property:
com.sun.am.policy.am.password
4. Restart the web server and try accessing any resource protected by the agent.
Uninstalling a Policy Agent
The following sections provide steps for uninstalling the agent. Note the following:
• Be sure to use the unconfig script to uninstall any agent that was installed
using the config script.The uninstallation program must be executed only
after unconfiguring all the existing agents using the command-line unconfig
script.
• If you want to uninstall the web server for some reason, make sure that you
uninstall the agent before you uninstall the web server.
Unconfiguring a Policy Agent
To remove an agent that was configured using the config script, use the script
unconfig. The unconfig script is located in the following directory:
Agent_Install_Dir/SUNWam/agents/es6/bin