While validating upgrade of Nolio Release Automation to the latest 6.7.6 patch update (6.7b576), we observed that patch update is no more compatible with this security configuration 'Encrypt the Keystore Password' documented here :
When trying to apply this security recommendation, the catalina.out file shows this error:
Apr 04, 2022 6:06:21 PM org.apache.tomcat.util.digester.Digester <clinit>
SEVERE: Error loading property source [com.nolio.tomcat.utils.PropertyDecoder]
at java.lang.Class.forName0(Native Method)
This error does not permit to decode encrypted keystore password and secure https port 8443 is not bound during server startup.
I've also tried to set the password in the 'server.xml' file without encryption and the NAC server starts without error (but this not expected behavior, we need to encrypt passwords in files).
Release : 6.7
Component : CA RELEASE AUTOMATION CORE
The issue reported is identified as a valid defect with Id NOLIO-5138.
The defect NOLIO-5138 will be fixed in release 6.7.7 and 6.8
Customer can subscribe to proactive notifications from Broadcom on areas around security vulnerability, product releases and cumulative patches as illustrated in document below.