The Clip users and roles are defined in the following file:
[ClipHome]\apache-tomcat\conf\tomcat-users.xml
There are four roles relevant for the Clip application:
- ClipRole: This role includes all Clip roles ( "OMiRole", "WSRole" and "WebRole") and is used by the "admin" user
- OMiRole: Used for incoming OMi events (access to the OMi REST URL:
Clip/rest/OMi/*) - WSRole: Used for incoming incident changes (access to the Web Service
Clip/modws/*) - WebRole: Used to access to the Clip web gui
All passwords are encrypted by default using the algorithm "SHA-1". In order to encrypt your own password please use these commands :
For Windows:
set JAVA_HOME=[ClipHome]\jre
[ClipHome]\apache-tomcat\bin\digest.bat -a SHA1 mypwd
For Linux:
JAVA_HOME=[ClipHome]/jre
PATH=$JAVA_HOME/bin:$PATH
[ClipHome]/apache-tomcat/bin/digest.sh -a SHA1 mypwd
After executing the script copy only the encrypted hash value of the output line:
mypwd:5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8
and paste it into the password attribute of the <user>-Element of the tomcat-users.xml file:
<user password="5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8" roles="tomcat,manager-gui,admin-gui,admin-script,ClipRole" username="admin"/>
By default the Clip user (admin) has complete access and the default password "admin". Please change this for production usage.
There are three more predefined Clip users. These users should be used by the external systems (OMi, ServiceNow or Remedy) to restrict access to certain Clip URLs for security reasons. The following tables shows the Clip users with additional information:
| User name | Default password | Role | External system |
| admin | admin | ClipRole | Access to all URLs by default |
| wsinbound | wsinbound | WSRole | ServiceNow, Remedy |
| omiinbound | omiinbound | OMiRole | OMi |
| webuser | webuser | WebRole | None,user for the Clip Web UI |
In addition to these users the user that has access to the database can be configured. This configuration is described in chapter Configuring Clip database.