Password error using SslConfig utility to configure HTTPS/TLS/SSL on CA Performance Center

book

Article ID: 125218

calendar_today

Updated On:

Products

CA Infrastructure Management CA Infrastructure Management CA Performance Management - Usage and Administration DX NetOps

Issue/Introduction

Password error using SslConfig utility to configure HTTPS/TLS/SSL on CA Performance Center. 

Error while Performing: Certificate Changes

The step failed to run: Keystore was tampered with, or password was incorrect.

Environment

CA Performance Management 3.6 or later

Resolution

By default changeit when prompted for the Trust Store password



When using the SslConfig utility:



1) Password 



Specify a newly created password for importing the certificate into the jetty keystore: 

PC_Install_Directory/PerformanceCenter/jetty/etc/keystore 

This becomes the password for the Jetty Keystore and 

2) Trust Store Password

Specify the password to the JRE trust store: 

PC_Install_Directory/jre/lib/security/cacerts 

Default: changeit 

This is the password of the existing cacerts keystore, which is changeit by default. 


 

Additional Information

Note that you can change the password of the cacerts keystore: 

https://docops.ca.com/ca-performance-management/3-6/en/administrating/single-sign-on/set-up-https/enable-performance-center-to-use-ssl-manually/set-up-ssl-certificates-for-performance-center 

9) (Optional) For more security, change the password of the java trusted certificates keystore: 

keytool - storepasswd -keystore InstallDirectory/jre/lib/security/cacerts 


If this is done, you would need to provide the changed password to the SslConfig utility when configuring to run SSL when prompted for the Trust Store password