Configure password DpKeycloakUser during setup

Idea ID 2702568

Configure password DpKeycloakUser during setup

Brief description:

According to the documentation the password of the DpKeycloakUser must be known to successfully recover the IDB. As of today the password is silently randomised during the Cell Manager installation. Most users are not aware that the user even exists and a random password is used.

This idea is about showing the randomised password for DpKeycloakUser user during the setup and/or give the user the option to specify the password as part of the setup process. Here is an example for a Linux Cell Manager setup where we print the password created.

jetdcm04:/tmp/1050 # ./ -CM -accept_obsolescence -no_telemetry -secure_data_comm 1 -auditlog 1 -retention_months 90
  No Data Protector software detected on the target system.

  Validating System requirements...

  Passed:   Reporting Server instance not found. Cell Manager can be Installed.
  Passed:   The user account "hpdp" will be used for the IDB service.
  Passed:   Port number "7112" will be used for the "hpdp-idb" service.
  Passed:   Port number "7113" will be used for the "hpdp-idb-cp" service.
  Passed:   Port number "7116" will be used for the "hpdp-as" service.
  Passed:   Port number "9999" will be used for the "hpdp-as" service.
  Passed:   The kernel parameter value: SHMMAX = 18446744073709551615 (17179869183.99 GB).
            The minimum required parameter value is "2.5 GB".
  Passed:   There are "16827129856" bytes (15.67 GB) of available system memory.
            2 GB of system memory is required.
  Passed:   Requires 1643520 kilobytes (1.56 GB) of free
            storage space on the "/" filesystem.
            The filesystem "/" has 13147656 kilobytes (12.53 GB) of free space.
  Passed:   Hostname restrictions verified.
  Passed:   Open file limit restriction verified.

  Validating system requirements completed successfully.

Installing Data Protector A.10.50 Cell Manager...


Migration of Template(s) completed successfully.

Critical IDB recovery information:
The password of the user DpKeycloakUser user has been randomised. Please take a note of the password below or reset the password with the omniuser command.

omniusers -resetpass -name DpKeycloakUser -pass <newPassword>

Username: DpKeycloakUser
Password: 0dshrP=R:jkk

Perform a recent Data Protector IDB backup after changing the password. The password is required when you perform restore of the Internal Database (IDB).

  Installation/upgrade session finished.


Make the user aware of how important the DpKeycloakUser user is and give them the option to document the password used during the Cell Manager installation.

1 Comment
Micro Focus Expert
Micro Focus Expert
Status changed to: Waiting for Votes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.