How to Encrypt Server Configuration Passwords
Applicable Ephesoft versions: 4.0.5.0 and above
This feature is used to generate encrypted username and password, and update in the properties file.
Instructions:
1. Download Server Password Encryptor
2. Before executing the Encryptor.bat file. Please configure the following properties:
set JAVA_HOME=C:\Program Files\Java\jdk1.6.0_18\ set EPHESOFT_LIBRARY_PATH=C:\dcma\WEB-INF\lib set JAR_NAME=ephesoft.jar set CLASS_NAME=com.ephesoft.dcma.encryption.core.PasswordEncryptor
3. After configuring the properties, now execute the “Encryptor.bat” file.
Image may be NSFW.
Clik here to view.
4. Now, enter the password to be encrypted:
Image may be NSFW.
Clik here to view.
5. Now press enter on the screen and the encrypted password will display as:
Image may be NSFW.
Clik here to view.
6. Now copy the generated encrypted password and paste in into the properties file.
You can follow the same method to generate encrypted username.
Following are the files that require encrypted password:
| S.No. | Property File | Properties |
| 1. | Ephesoft\Application\WEB-INF\classes\META-INF\dcma-user-connectivity\user-connectivity.properties | user.connectivity_password
If LDAP/AD is configured |
| 2. | Ephesoft\Application\WEB-INF\classes\META-INF\dcma-ftp\dcma-ftp.properties | ftp.server.password |
| 3. | Ephesoft\Application\WEB-INF\classes\META-INF\dcma-reporting\etl-variables.properties | ephesoft.loginusername
ephesoft.loginpassword |
In etl-variables.properties, if encryption switch is set to ON then credentials must be encrypted. Use the credentials that have role which has access to the Ephesoft web services.
In server.xml, you can use plain text as well as encrypted passwords. You need to update:
- Realm class name for LDAP/AD configuration (http://wiki.ephesoft.com/ldapad-password-encryption).
- Factory attribute in resource tag for database password encryption (http://wiki.ephesoft.com/common-connection-pooling).
NOTE: On setting {Ephesoft-application}\WEB-INF\classes\META-INF\dcma-encryption\dcma-encryption.properties to password.use_encryption=true, the ftp.server.password also needs to be encrypted inside <Ephesoft>\Application\WEB-INF\classes\META-INF\dcma-ftp\dcma-ftp.properties since password.use_encryption property is a global level check for encryption. You might encounter an error encrypted credentials are not used. For more information, see Decryption: Algorithm Parameter is Invalid – Error.
Configuration:
In order to enable encryption in the application, update the following property:
{Ephesoft-application}\WEB-INF\classes\META-INF\dcma-encryption\dcma-encryption.properties to password.use_encryption=true
Frequently Asked Questions about Password Encryption