Uploaded image for project: 'EJBCA'
  1. EJBCA
  2. ECA-4317

Document how to encrypt the datasource password in standalone.xml for JBoss EAP 6.4/JBoss AS 7.1

    Details

      Description

      Biau has written instructions.

      1. Run the following script to generate an encrypted encoded password

      1. java -cp /opt/jboss/modules/system/layers/base/org/picketbox/main/picketbox-4.1.1.Final-redhat-1.jar:/opt/jboss/modules/system/layers/base/org/jboss/logging/main/jboss-logging-3.1.4.GA-redhat-2.jar:$CLASSPATH org.picketbox.datasource.security.SecureIdentityLoginModule PLACEHOLDER

      2. Copy the encoded password. Paste it into the standalone.xml configuration file

      ? As the service user

      $ vim /opt/jboss/standalone/configuration/standalone.xml

      Paste the following segment into the “security-domains” segment

      <security-domain name="EjbcaDsEncryptedPassword">

      <authentication>

      <login-module code="SecureIdentity" flag="required">

      <module-option name="username" value="ejbca"/>

      <module-option name="password" value="19ee205c18ee7e14b58bc0fe9b77e168"/>

      </login-module>

      </authentication>

      </security-domain>

      Look for the “EjbcaDS” datasource segment, replace the “security” segment

      <security>

      <user-name>ejbca</user-name>

      <password>PLACEHOLDER</password>

      </security>

      with following value:

      <security>

      <security-domain>EjbcaDsEncryptedPassword</security-domain>

      </security>

        Attachments

          Activity

            People

            Assignee:
            tomas Tomas Gustavsson
            Reporter:
            tomas Tomas Gustavsson
            Verified by:
            Mike Agrenius Kushner
            Votes:
            0 Vote for this issue
            Watchers:
            5 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: