When a password expiration restriction is in effect, you must change the password before
the expiration period expires.
Before you begin
Ensure that you know the existing password that you want to change.
About this task
You must be the database instance owner on AIX or Linux systems, or the Local Administrator on
Windows systems. The login password for the DB2®
Administrator user ID and the Db2 data source
password that is used by WebSphere® Application Server must be the same. When you change one, you
must change the other.
You must ensure that the Db2 user name and
password must be same on all the masters of IBM Security Key Lifecycle Manager Multi-Master cluster.
Procedure
-
Stop Db2 HADR on IBM Security Key Lifecycle Manager primary master server with primary
database.
- Windows
-
- Click .
- Type the following command and press
Enter.
db2 stop hadr on database sklmdb31
- Linux
-
- In a terminal window, type the following command to change the DB2 instance
owner.
su - sklmdb31
- Run the following
command.
db2 stop hadr on database sklmdb31
-
Deactivate standby database on IBM Security Key Lifecycle Manager
standby master by running the following command.
db2 deactivate db sklmdb31
-
Stop Db2 HADR on IBM Security Key Lifecycle Manager standby master with standby database by running
the following command.
db2 stop hadr on database sklmdb31
-
Stop WebSphere® Application Server on all master servers of the
Multi-Master cluster.
To do so, complete these steps:
- Go to the <WAS_HOME>\bin directory.
- Windows
- C:\Program Files\IBM\WebSphere\AppServer\bin
- Linux
- /opt/IBM/WebSphere/AppServer/bin
- Run the script:
- Windows
-
stopServer.bat server1
- Linux
-
./stopServer.sh server1
-
Stop agent service on all IBM Security Key Lifecycle Manager master
servers. For detailed instructions, see Restarting the IBM Security Key Lifecycle Manager agent service.
-
Start WebSphere Application Server on all the master servers.
To do so, complete these steps:
- Go to the <WAS_HOME>\bin directory.
- Windows
- C:\Program Files\IBM\WebSphere\AppServer\bin
- Linux
- /opt/IBM/WebSphere/AppServer/bin
- Run the script:
- Windows
-
startServer.bat server1
- Linux
-
./startServer.sh server1
-
Change the Db2 password at the operating
system level and update the same password in the data source on all IBM Security Key Lifecycle Manager master servers.
-
Start Db2 HADR on all the standby master
servers by using the following command.
db2 start hadr on database sklmdb31
as standby
-
Start Db2 HADR on the primary master server
by using the following command.
db2 start hadr on database sklmdb31
as primary
-
Update Db2 password in multi-master table
in Db2 by running Update DB2 Password On All Masters REST Service.
-
Stop the agent process on all the master servers in the cluster.
For instructions,
see
Stop Agent. If the agent process does
not stop, forcibly stop the process from Windows Task Manager.
-
Restart WebSphere Application Server on all IBM Security Key Lifecycle Manager servers in the cluster.