By default, the Model Manager server writes hashed local passwords to the file /db/settings/local.db in the
Preference Directory. The temporary password set for the
Default Local Administrative User during installation is stored using the same hash algorithm in the file
tempadminlogin.properties in the root of the installation directory.
Passwords saved in COMSOL Multiphysics for connecting to the Model Manager server (“Remember password”) are stored encrypted so that only the logged-in user can access them. On Windows®, the encryption is done using the Data Protection API of the operating system. On Linux
® and macOS, the encryption is done using a master key stored in the preference directory, protected by file system permissions. The same encryption is used to protect passwords stored by a Model Manager server configured to connect to external SQL database servers or Apache Solr™ servers using password-based authentication methods — see also
Databases with External Server Components.