Change hard-coded key for password encryption to config-based key
search cancel

Change hard-coded key for password encryption to config-based key

book

Article ID: 245262

calendar_today

Updated On:

Products

CA Service Operations Insight (SOI)

Issue/Introduction

How to change hard-coded key for password encryption to config-based key

Environment

SOI 4.2 CU2

Resolution

Please follow the below steps to test password encryption with a configurable key:-

1. Stop All the SOI services
2. Install latest CU4 patch
3. Add attached encrypt.properties at below location where we can configure salt which will use for encryption and decryption
 ActiveMQ = CA\SOI\apache-activemq\conf\encrypt.properties
 In All SOI Services (Manager,UI,MQ,IFW,Event Management) = CA\SOI\jsw\conf\encrypt.properties

4. Encrypt new password using tools/EncryptSAMCreds.bat command

5. Provide new encrypted password (DB and samuser password) in below configuration file.

CA\SOI\SamUI\conf\jaas.xml
CA\SOI\SamUI\webapps\sam\eem-config.xml
CA\SOI\tomcat\registry\topology\physical\node0\sor\eem.properties
CA\SOI\tomcat\webapps\sam\eem-config.xml
CA\SOI\SamUI\webapps\sam\server-config.xml
CA\SOI\tomcat\webapps\sam\server-config.xml
CA\SOI\tomcat\lib\hibernate.cfg.xml
CA\SOI\apache-activemq\conf\activemq.xml
CA\SOI\EventManagement\resources\eventManagerServerConfig.xml
CA\SOI\resources\Configurations\mtc_lvntest021105.xml
CA\SOI\resources\Configurations\SSA_IFW_lvntest021105.xml
CA\SOI\tomcat\lib\eventManagerClientConfig.xml
CA\SOI\tomcat\lib\jmsconnect.properties
CA\SOI\wso2registry\repository\conf\user-mgt.xml
CA\SOI\tomcat\registry\topology\physical\node0\sor\wsman.properties
CA\SOI\tomcat\registry\topology\physical\node0\sor\ssaserver.xml
CA\SOI\tomcat\registry\topology\physical\node0\sor\sorapp.xml
CA\SOI\tomcat\registry\topology\physical\node0\sor\restserver.xml

6. Start SOI services.

Attachments

1657011570353__encrypt.properties get_app
Powered by Wolken Software