Steps to encrypt keystore password to be used in lc_turnkey.xml

This video walks through the steps to encrypt Keystore password to be used in lc_turnkey.xml.

Transcript
Hello everyone. Today, we will be discussing how to encrypt Keystore password to be used in lc_turnkey.xml. Jboss EAP allows the encryption of sensitive strings outside of configuration files. These strings can be stored in a keystore and subsequently decrypted for applications and verification systems. Sensitive strings can be stored in either of the following ways. The first one being credential store and the second one being password vault. In this case, we will use password vault. To begin with, we need to create a vault folder inside JBoss and then pin. After that, we will create a vault keystore using the command shown on the screen. Once the vault keystore has been created, we will initialize the keystore by running the command that has been highlighted on the screen. Once the command is executed, you’ll be able to see the following output. Next, we have to configure the vault attributes to lc_turnkey.xml file. We have to attach the piece of code that has been highlighted on the screen in the .xml file before the start of the management deck. Now, we will go ahead and run the vault.bat file in the command prompt. We will enter zero to choose the first option of storing a secured attribute. After that, we will go ahead and enter the password followed by the vault block and attribute name. Upon doing that, our secure attribute name will be stored in vault.
Now we will replace the password, put the value in lc_turnkey.xml file. We will add this after shutting down the server and taking the backup of the file. Once added, we will start the server. For example, on my server, both keystore password and key password had the same value, we just change it, like shown on the screen. Therefore, I’ll go ahead and change the keystore password and key password to the configured value as highlighted on screen. If you have two different passwords previously, please add them separately and use the value accordingly. So in this way, you can successfully encrypt keystore password used in lc_turnkey.xml file. Thank you. -
recommendation-more-help
8de24117-1378-413c-a581-01e660b7163e