server connection.

ispe Feb 7, 2013 10:30 AM

Hi All,

We are using JBOSS 7.1.1 final version.

We are trying to create a two way ssl between 2 jboss instances as an ejb client/server.

We need to encryt the keystore and trustore password, instead of clear text password in the standalone.xml file.

Belew is the setup we use. With clear text password the connection works.

	<management>
	<security-realms>
	<security-realm name="ApplicationRealm">
	<server-identities>
	<ssl>
	<keystore path="keystore.jks" relative-to="jboss.home.dir" password="keystore_pass"/>
	</ssl>
	</server-identities>
	<authentication>
	<truststore path="trustore.jks" relative-to="jboss.home.dir" password="trustore_pass"/>
	</authentication>
	</security-realm>
	</security-realms>
	</management>

Regards,

Sunil

1. Re: Encrypt keystore/trustore password in standalone.xml for ejb client/server connection.

nickarls Feb 8, 2013 3:41 AM (in response to ispe)

Never tried it but have you looked at the Vault-stuff: https://community.jboss.org/wiki/JBossAS7SecuringPasswords ?
Actions
2. Re: Encrypt keystore/trustore password in standalone.xml for ejb client/server connection.

ispe Feb 8, 2013 6:36 AM (in response to nickarls)

I used the same link to try the vault option.
Actions
3. Re: Encrypt keystore/trustore password in standalone.xml for ejb client/server connection.

nickarls Feb 8, 2013 6:54 AM (in response to ispe)

Any pointers in

https://community.jboss.org/wiki/AS7UtilisingMaskedPasswordsViaTheVault or
https://community.jboss.org/wiki/JBossAS7ConfiguringSSLOnJBossWeb ?
Actions