To migrate to encrypted passwords on the Integrity Lifecycle Manager Agent
1. Stop Integrity Lifecycle Manager Agent on the applicable remote machines.
2. From the installdir/bin directory, run the following command:
encryptPassword
or
./encryptPassword
In interactive mode, the following options display:
1) Encrypt the existing passwords
2) Change the encrypted passwords
3) Exit
3. To start the encryption process, enter
1. A message displays to indicate that encrypted passwords will be configured. Any conversion back to a plain text password system must be configured manually. For more information on reverting to plain text
Integrity Lifecycle Manager Agent passwords, see
“Reverting to Plain Text Integrity Agent Passwords”.
4. To proceed with the encryption, enter y. The application runs and encrypts the Integrity Lifecycle Manager Agent passwords.
Once the application has completed, a confirmation message displays. If this is the first time you have run the encryptPassword application, the agent.properties file is stamped with the following flag:
global.encrypt=true
5. Restart Integrity Lifecycle Manager Agent.
|
|
After running this application, the encryption.jceks keystore is created automatically in the installdir\data\security\store\ directory. Similarly, the keystore password file secret.key is added to the installdir\data\security\key\ directory. Ensure that this key is manually secured.
|
