ESA Config: Change ESA Storage Password

Document created by RSA Information Design and Development on Jun 25, 2017
Version 1Show Document
  • View in full screen mode
  

This topic tells administrators how to change the default storage password for the ESA database.

In Security Analytics, this procedure is optional. However, it is always a best practice for administrators to change any default password for added security. Some organizations do not allow default passwords and make this procedure mandatory.

Prerequisites

You must have Administrator role privileges.

Procedures

Change Password for ESA Database Account

  1. Log on to the host that runs the ESA service:
    1. SSH to the ESA host.
    2. Log on as root.
  2. Log on to the MongoDB as the admin user:
    mongo esa -u admin -p <current_admin_password> --authenticationDatabase admin
  3. Type the following command to change the ESA account password. The default pasword is esa.
    db.changeUserPassword(‘esa’,’<new_password>’)

Change Password for ESA Service

  1. Log on to Security Analytics as admin.
  2. In the Security Analytics menu, select Administration > Services.
  3. Select the ESA service, then > View > Explore.
  4. In the Explore view on the left, select Alert > Storage > configuration.
  5. In the right panel, type the database account password in the ConnectionPassword field.

Note: The password for the database and for the Security Analytics service configuration must be the same.

  1. To validate that the database and Security Analytics passwords match, in the Security Analytics menu select Alerts > Summary
    If content appears in the Summary tab, the passwords match and were changed successfully. 
    If you do not see content in the Summary tab, revise the service password to match the MongoDB password.
You are here
Table of Contents > Additional ESA Procedures > Change Default Storage Passwords > Change ESA Storage Password

Attachments

    Outcomes