You want to enable SSL in Symantec Protection Engine (SPE) REST API service and also encrypt the "key-store-password" and "key-password" in application.yml file.
Steps from article are followed for this: Enabling SSL in SPE REST API service
Exceptions seen in SPE_REST_API.log
Caused by: java.io.IOException: keystore password was incorrect
at java.base/sun.security.pkcs12.PKCS12KeyStore.engineLoad(PKCS12KeyStore.java:2097) ~[?:?]
at java.base/sun.security.util.KeyStoreDelegator.engineLoad(KeyStoreDelegator.java:228) ~[?:?]
at java.base/java.security.KeyStore.load(KeyStore.java:1500) ~[?:?]
Caused by: java.security.UnrecoverableKeyException: failed to decrypt safe contents entry: javax.crypto.BadPaddingException: Given final block not properly padded. Such issues can arise if a bad key is used during decryption.
at java.base/sun.security.pkcs12.PKCS12KeyStore.engineLoad(PKCS12KeyStore.java:2097) ~[?:?]
at java.base/sun.security.util.KeyStoreDelegator.engineLoad(KeyStoreDelegator.java:228) ~[?:?]
at java.base/java.security.KeyStore.load(KeyStore.java:1500) ~[?:?]
SPE 9.2.x
Incorrect string format used while using the Encryptor Service in Swagger for encrypting the password.
When the Encryptor Service is used in Swagger to encrypt the password, it presents the input required for "strToBeEncrypted" value in body as "string".
Enter the password to be encrypted directly and not by replace the word "string" within the quotes. The exception is caused due to the quotes being included during the encryption.