search cancel

How to obfuscate the jetty password for em-jetty-config.xml and webview-jetty-config.xml?

book

Article ID: 41759

calendar_today

Updated On:

Products

CA Application Performance Management Agent (APM / Wily / Introscope) INTROSCOPE

Issue/Introduction

Problem:

 

  When changing the password to jetty admin, you will need to change the password in the em-jetty-config.xml and webview-jetty-config.xml files.  This is usually done when configuring to secure the port access on the EM and Webview.

 

  From the config.xml file:

  <Set name="password">OBF:1v2j1uum1xtv1zej1zer1xtn1uvk1v1v</Set>

 

  You can use the plaintext version of the password but most will want to have the new password obfuscated.

 

Environment:

 

  All APM versions

 

Cause:

 

  Many thought that once saving jetty-config.xml and restarting the EM, that it would automatically obfuscate the password. However, it does not do this per the design. The only way is to follow the process below to determine the OBF: password and paste it into the xml file.

 

Resolution:

 

  Below is a working example for the Jetty Password 'password'.

 

  The command to use will take a little knowledge and research but this should be all you need.

 

  Java -classpath jetty-XXX.jar;jetty-util-XXX.jar org.mortbay.jetty.security.Password `KeystorePassword' password 

 

  (Windows will use the ";" Semicolon and Unix will use the ":" colon)

 

  XXX is the version information and you will have to find these files and their names on your servers.  They will be found deep in the <EM HOME> folder.

 

  An example:

  C:\CA APM\Introscope9.1.7.0\product\enterprisemanager\configuration\org.eclipse.osgi\bundles\171\1\.cp>java -classpath jetty-6.1.26.jar;jetty-util-6.1.26.jar org.mortbay.jetty.security.Password `KeystorePassword' password password 

  OBF:1v2j1uum1xtv1zej1zer1xtn1uvk1v1v 

  MD5:5f4dcc3b5aa765d61d8327deb882cf99 

 

  Copy the OBF: line and paste it into the jetty-config.xml files and save the file.  You will need to restart the EM to have the new password take effect.

 

Environment

Release:
Component: INTSCP