Encrypting Agent PTC RV&S Passwords
For specified Agent PTC RV&S passwords, the Agent PTC RV&S can run with plain text passwords or an encrypted password configuration. For more information on the encryptpassword application, see the topic Migrating to Encrypted Server-side Passwords
Encrypted Agent PTC RV&S passwords provide an additional level of security by eliminating plain text passwords that can be viewed in the Agent PTC RV&S files.
 |
Encryption of Agent PTC RV&S passwords is independent of the transport protocol defined in your security scheme.
|
The following Agent PTC RV&S passwords can be encrypted:
|
Password Encrypted
|
Found in Properties File Under installdir1/
|
|---|---|
|
ldap.credential
|
/config/properties/security.properties
|
|
mkagent.privatekey.password
mksagent.apiSession.defaultPassword
mksagent.smtpserver.serverpassword
|
/config/properties/agent.properties
|
|
*
|
/data/password.properties
|
|
tm.adapter.*.apiSession.defaultPassword
|
/config/properties/tm.properties
|
1 Where installdir is the path where you installed Windchill RV&S Agent
Migrating to Encrypted Agent PTC RV&S Passwords
By default, Agent PTC RV&S is installed with passwords configured in plain text. If you want to change the default installation and run with encrypted Agent PTC RV&S passwords, you can use the encryptPassword application to modify the Agent PTC RV&S files for password encryption. The encryptPassword application is located as follows:
installdir\bin\encryptPassword.exe
|
|
Before running the encryptPassword application, you must first stop the Agent PTC RV&S. After you run the application and restart the Agent PTC RV&S, the system will then use encrypted passwords.
|
When the application is run, if the Agent PTC RV&S is running in the default plain text password configuration, it migrates the Agent PTC RV&S to the encrypted password configuration; if the Agent PTC RV&S is already running in the encrypted password configuration, it encrypts any Agent PTC RV&S passwords that are in plain text and writes them back to the file in the encrypted format.
To run the application directly and migrate to encrypted passwords, specify encryptPassword with options as follows:
encryptPassword -e|--encryptPassword
or
./encryptPassword -e|--encryptPassword
where
• encryptPassword runs the application for password encryption.
• -e|--encryptPassword specifies the option to migrate the system on the Agent PTC RV&S from plain text passwords to encrypted passwords. If the Agent PTC RV&S is already running in the encrypted password configuration, this option specifies to encrypt any remaining plain text passwords. For example, encryptPassword -e.
For a list of the passwords that are encrypted by the encryptpassword application, see To change encrypted
passwords on Agent PTC RV&S.
The following procedure outlines the syntax for encryptPassword where no options are specified and you are presented with a text menu to guide you through the migration process.
Rubriques associées
Parent topic