Passwords used by FileNet Deployment Manager
Several FileNet® Deployment Manager operations require connections to Content Platform Engine servers. Therefore, when you define the connection for an environment, you specify a user name for a FileNet P8 account. For every environment defined, FileNet Deployment Manager saves the account user name in the environment configuration file (EnvironmentConfig.xml).
To connect to a FileNet P8 server, FileNet Deployment Manager also requires the password for the specified account. FileNet Deployment Manager is installed in FIPS 140-ready mode, meaning that passwords cannot be saved to disk in that mode. Therefore, FileNet Deployment Manager prompts for a password when it connects to a FileNet P8 server, and it retains passwords in memory until you close FileNet Deployment Manager. See FIPS 140-ready mode for details.
If you use the command-line interface in FIPS 140-ready mode, you must specify the password in the -password argument as shown in the following example:
DeploymentManager.exe --operation DeploymentOperation.xml --password bird123
You can disable the FIPS 140-ready mode as described in Set preferences.
FIPS 140-ready mode
- The application prompts you to enter a password the first time it connects to a Content Platform Engine (passwords must be entered one time for each session for any environment).
- The application obfuscates passwords and caches them in memory until you end the Content Platform Engine sessions; it does not record passwords to files.
Non-FIPS 140-ready mode
When the FIPS 140-ready mode is disabled, FileNet Deployment Manager encrypts passwords by using the Advanced Encryption Standard (AES), and saves them in the environment configuration files. Electing to save passwords eliminates password prompts when you connect to FileNet P8 servers. Also, in the FileNet Deployment Manager command-line interface, you can exclude the --password argument, for example:
DeploymentManager.exe --operation DeploymentOperation.xml