{"id":11760,"date":"2016-12-21T08:11:31","date_gmt":"2016-12-21T08:11:31","guid":{"rendered":"https:\/\/ephesoft.com\/docs\/?p=11760"},"modified":"2020-05-19T12:24:21","modified_gmt":"2020-05-19T19:24:21","slug":"how-to-encrypt-passwords-in-ephesoft-files","status":"publish","type":"docs","link":"https:\/\/ephesoft.com\/docs\/products\/transact\/configurations\/security-configuration\/how-to-encrypt-passwords-in-ephesoft-files\/","title":{"rendered":"How to Encrypt Passwords in Ephesoft files"},"content":{"rendered":"
Brief Description:<\/strong><\/p>\n This tutorial deals with the steps on how to encrypt the plain text passwords in the Ephesoft files to increase security of the application.<\/p>\n <\/p>\n Note:<\/strong><\/p>\n <\/p>\n Components<\/strong><\/p>\n Security, Encryption & Decryption<\/p>\n <\/p>\n Steps to Encrypt the passwords:<\/strong><\/p>\n <\/p>\n There are two files in which changes need to be done for the password encryption<\/p>\n The files are present at following location<\/p>\n <\/p>\n To enable password encryption for LDAP and AD following changes are needed.<\/p>\n To encrypt the passwords the Encryptor.bat <\/strong>needs to be used available at the following location:<\/p>\n On running the above .bat file, and it will ask for the password string that need to be encrypted.<\/p>\n <\/p>\n The password string needs to be entered here and on pressing \u201cEnter\u201d the encrypted password is returned.<\/p>\n <\/p>\n NOTE: The encryption algorithm and cipher strength being used by encryptor.bat from Ephesoft is PBEWithMD5AndDES (56 bits).<\/p>\n","protected":false},"featured_media":0,"parent":22092,"menu_order":6,"comment_status":"closed","ping_status":"closed","template":"","doc_tag":[],"yoast_head":"\n\n
\n
\na. Add a comment to\u00a0<Realm className=\u201dorg.apache.catalina.realm.UserDatabaseRealm\u201d resourceName=\u201dUserDatabase\u201d\/>
\nb. In the realm settings change the value in the Realm Class name from org.apache.catalina.realm.JNDIRealm \u00a0to\u00a0 <Realm className=\u201dcom.ephesoft.realm.EphesoftRealm\u201c\/>
\nc. Use the encrypted password generated for\u00a0connectionPassword\u00a0property when you configure AD in server.xml file.<\/li>\n
\n<\/strong>\u00a0a. Change the factory attribute in the Resource tag to \u201ccom.zaxxer.hikari.encryption.EncryptedHikariJNDIFactory\u201d and provide the encrypted password in the datasource.password attribute that was generated.
\nNote<\/strong>:\u00a0To ensure successful DB connection, all Oracle DB passwords in server.xml have to be enclosed in quotes (e.g. dataSource.password=”"Passw0rd"”). When using Encryptor, make sure to provide only the password, without the double quotes (e.g. Passw0rd).<\/li>\n<\/a><\/a>Steps to enable LDAP\/AD password Encryption<\/h3>\n
\n
\n
\n
\nBy default the className attribute in the server.xml has the following value:
\n<Realm className=”org.apache.catalina.realm.JNDIRealm<\/strong>“\/>
\nChange the value to the following:
\n<Realm className=”com.ephesoft.realm.EphesoftRealm<\/strong>“\/><\/li>\n
\n<Realm className=”com.ephesoft.realm.EphesoftRealm<\/strong>” connectionPassword = “<\/strong>mzoanUU1UD0rc1PvexuAKw==”<\/strong>\/><\/li>\n
\nEphesoft\\Application\\WEB-INF\\classes\\META-INF\\dcma-encryption.password.use_encryption=true<\/li>\nPassword Encryption:<\/h3>\n
\n