Encrypting database passwords in the backup-restore utility environment files

Passwords that are used by the IBM OpenPages®, and Cognos® database user accounts within the backup-restore environment files are encrypted, by default, during installation.

If you change the value of the password parameters within the following environment files, the value is in plain text until it is encrypted.
  • op-backup-restore.env database password parameters (the file is stored on the application server):
    • DB_SYSTEM_PWD=
    • DB_SYS_PWD=
    • DB_OP_PWD=
  • op-cc-backup-restore.env database password parameters (the file is stored on the reporting server):
    • DB_CC_PWD=

For security purposes, encrypt the changed passwords by completing the following procedure.

Important: In a horizontal clustered environment, you must complete this procedure on each application server or reporting server in the horizontal cluster.

Procedure

  1. Open a command or shell window on the OpenPages server.
  2. Go to the <OP_HOME>/aurora/bin directory.
  3. To encrypt changed database password parameters in the op-backup-restore.env environment file, run the following command:
    • On Windows operating systems: OPBackup.cmd secure
    • On Linux® operating systems: ./OPBackup.sh secure
  4. To encrypt changed database password parameters in the op-cc-backup-restore.env environment file, do the following steps:
    1. Open a command or shell window on the reporting server.
    2. Go to the <CC_Home>/tools/bin directory.

      <CC_Home> is the installation location of Cognos.

      • For Microsoft Windows, <CC_Home> is C:\OpenPages\Reporting.
      • For Linux, <CC_Home> is opt/OpenPages/Reporting.
    3. Type the following backup command:
      • On Windows: OPCCBackup.cmd secure
      • On Linux: ./OPCCBackup.sh secure