Question & Answer
Question
Is there a way to encrypt the DB password in properties files?
Cause
During installation the database userid and password are saved in jdbc.properties and sandbox.cfg files, and customer has concern over saving database password in clear text.
Answer
Any property (except for the yfs.propertyencrypter.class property in the yfs.properties file) mentioned in the following files can be encrypted using
the install_dir/properties/customer_overrides.properties file:
install_dir/properties/yfs.properties
install_dir/resources/yifclient.properties files
1. Prefix the property value you want to encrypt with encrypted:. For example,
jdbcService.db2Pool.password=encrypted:3BDUoHuN/3+ErgQGZuiqWg==
2. Configure the encryption/decryption class in customer_overrides.properties file
For example:
security.propertyencrypter.class=com.ibm.oms.common.util.ibmEncryption
3. Ensure that the class is accessible through the CLASSPATH environment variable.
4. Create your own encryption/decryption to implement the YCPEncrypter interface. For details about this interface, see the Javadocs.
Was this topic helpful?
Document Information
Modified date:
10 May 2022
UID
swg21684411