Enabling this feature

To restrict the default organization administrator from changing his control panel password using the organization control panel, you need to enable this feature using the following procedure.

 

To restrict the default organization administrator from changing his password:

  1. Log on to the CP server as the domain administrator.

  2. Open a command prompt window and change to the <CP_install_dir>\bin directory, where <CP_install_dir> is the installation path specified during the Ensim Unify control panel software installation. For example, If you have installed the control panel software in the default directory, then go to C:\Program Files\Ensim\Ensim Unify\cp\bin.

  3. Type the following command in the command prompt window.

SetGlobalConfig.exe <control_panel_username> <control_panel_password> "Global Unify Settings" UnifySettings AllowAdminPassChange false bool 

where:

Example: SetGlobalConfig.exe admin@example.net abc123 "Global Unify Settings" UnifySettings AllowAdminPassChange false bool

  1. Run the command iisreset.

  2. Stop the Provisioning Engine COM+ service by performing the following steps on all PE servers:

    1. Log in to the PE server as the domain administrator.

    2. Click Start > Administrative Tools, then click Component Services.

    3. Expand Console Root > Component Services > Computers > My Computer > COM+ Applications.

    4. Right-click Provisioning Engine, then select Shut down.

    5. If you have more than one PE server, repeat the previous steps for each PE server.

The default organization administrator now cannot change his password using the organization control panel.