Installation guide
Shared Secret Encryption Utility
92 Sun ONE Identity Server Policy Agents 2.1 • Web Policy Agents Guide • September 2004
Shared Secret Encryption Utility
The policy agent stores the shared secret in the AMAgent.properties file. By
default, this shared secret is the Identity Server internal LDAP authentication user
password. This can be changed on the server side by editing the
AMConfig.Properties file.
Theproperty com.sun.am.policy.am.password in the AMAgent.properties file
is set with the encrypted shared secret while installing the agent.
To reset or change the shared secret, you can use the encryption utility and set the
value in the property.
To reset the shared secret
1.
Go to the following directory:
Agent_Install_Dir\bin
2. Execute the following script from the command line
cryptit shared_secret
3. Cut and paste the output from Step 2 in the property:
com.sun.am.policy.am.password
4. Restart the web server and try accessing any resource protected by the agent.
Disabling, Uninstalling, and Unconfiguring
Microsoft Windows Policy Agents
When you no longer require a Microsoft Windows policy agent, you can disable it,
or you can uninstallit.If you nolongerrequire a policyagenttoprotect a particular
web site, you can unconfigure the agent from that web site.
Disabling Microsoft Windows Policy Agents
Microsoft IIS web servers provide a tool that allows you to disable the web server.
Therefore, instructions are provided here for disabling the Microsoft IIS web
servers using that tool.