LDAP/AD Password Encryption

Follow the steps below to enable LDAP/AD password encryption in Ephesoft Transact.

Note the following files will require changes:

  • server.xml located at Ephesoft\JavaAppServer\conf\
  • user-connectivity.properties located at \Ephesoft\Application\WEB-INF\classes\META-INF\dcma-user-connectivity
  • dcma-ftp.properties located at \Ephesoft\Application\WEB-INF\classes\META-INF\dcma-ftp
  1. Run encryptor.bat located at the following: {Ephesoft-Installation-Directory}\Application\native\encryption\Encryptor.bat
  2. Enter the password string that needs to be encrypted.

  1. Click Enter to return the encrypted password.
  2. Set the {Ephesoft-application}\WEB-INF\classes\META-INF\dcma-encryption\dcma-encryption.properties to password.use_encryption=true
  3. Change the className attribute in the following <Realm className=”org.apache.catalina.realm.JNDIRealm“/> to <Realm className=”com.ephesoft.realm.EphesoftRealm“/> in the server.xml file.
  4. Enter an encrypted password for the connectionPassword attribute in the <Realm … > tag in the server.xml
    Example: <Realm className=”com.ephesoft.realm.EphesoftRealm” connectionPassword = “mzoanUU1UD0rc1PvexuAKw==”/>
  5. Turn on the password.use_encryption property present in the dcma-encyption.properties located at
    Ephesoft\Application\WEB-INF\classes\META-INF\dcma-encryption.password.use_encryption=true
  6. Use an encrypted password for the user.connectivity_password property in the dcma-userconnectivity.properties.user.connectivity_password=”mzoanUU1UD0rc1PvexuAKw==”
  7. Enter <!– before and –> after the following line: <Realm className=”org.apache.catalina.realm.UserDatabaseRealm” resourceName=”UserDatabase”/>

Note: Do not comment out the </Realm> on the next line.

  1. Encrypt the username and password in the following file: \Ephesoft\Application\WEB-INF\classes\META-INF\dcma-ftp
  2. Restart Ephesoft Transact service.

Note: The encryption algorithm and cipher strength used by encryptor.bat from Ephesoft Transact is PBEWithMD5AndDES (56 bits).