Password error using SslConfig utility to configure HTTPS/TLS/SSL on CA Performance Center

Article Id: 125218

Status: Published

Updated On: 24-01-2019 06:18

Products:

CA Infrastructure Management , CA Infrastructure Management , CA Performance Management - Usage and Administration , CA Performance Management - Data Polling

Issue/Introduction:

Password error using SslConfig utility to configure HTTPS/TLS/SSL on CA Performance Center.

Error while Performing: Certificate Changes

The step failed to run: Keystore was tampered with, or password was incorrect.

Environment:

CA Performance Management 3.6 or later

Resolution:

By default changeit when prompted for the Trust Store password

When using the SslConfig utility:

1) Password

Specify a newly created password for importing the certificate into the jetty keystore:

PC_Install_Directory/PerformanceCenter/jetty/etc/keystore
.
This becomes the password for the Jetty Keystore and

2) Trust Store Password

Specify the password to the JRE trust store:

PC_Install_Directory/jre/lib/security/cacerts

Default: changeit

This is the password of the existing cacerts keystore, which is changeit by default.

Additional Information:

Note that you can change the password of the cacerts keystore:

https://docops.ca.com/ca-performance-management/3-6/en/administrating/single-sign-on/set-up-https/enable-performance-center-to-use-ssl-manually/set-up-ssl-certificates-for-performance-center

9) (Optional) For more security, change the password of the java trusted certificates keystore:

keytool - storepasswd -keystore InstallDirectory/jre/lib/security/cacerts

If this is done, you would need to provide the changed password to the SslConfig utility when configuring to run SSL when prompted for the Trust Store password