如何在 WSO2 的 usr-mgt.xml 中加密 LDAP UserStore 密码? [英] How to encrypt LDAP UserStore password in usr-mgt.xml in WSO2?
问题描述
我正在尝试使用 ciphertool.bat(使用 WSO2 版本 5.0.0)加密 WSO2 Identity Server (usr-mgt.xml) 中的 UserStore 连接密码.
I am trying to encrypt the UserStore connection password in WSO2 Identity Server (usr-mgt.xml) using ciphertool.bat ( using WSO2 version 5.0.0).
我有一个 jks 文件,key 和 keystorepassword 的密码相同.在ciphertool.properties中,修改下面一行:
I have a jks file with same password for key and keystorepassword. In ciphertool.properties, modified following line as:
UserStoreManager.Property.ConnectionPassword=repository/conf/user-mgt.xml
我使用 ciphertool.bat -DConfigure 命令生成了一个加密密码,并将 ciphertext.properties 文件更新为:
I generated a encrypted password by using ciphertool.bat -DConfigure command and I updated ciphertext.properties file as:
<代码> UserStoreManager.Property.ConnectionPassword = RG1Bz7q0VbyTLJ3t2yCKaoquXkZZ0XrgKZ8PgsYp4F4NNiIJ4c16aCEa2AkdYFL + jaPVmbOF/lFK1A0EWFXO35UsQ28DkwtiDKw9er4USm3DML9OlG + VE/QNXF3RoiLG00DJGeRrqFTuz5SpphGJk1ShidEYvIyzx/5KK4BK1r0CHfMTqNFvwwAr8QY6uUD/bgbn8T99LrleRJu6fA76l77CaruISBdtf/bx1BdE30xN/+ OJ5l3R9qrswLNEafxPRiHcvwuHP5BI31m6WiZ/6zUt5 + P0NYCYF8aw7qNPt99 + z5KAzslrk1pV3fOIirs7skhGwWDuayMa6HUU5f9CyA ==
不确定我应该如何告诉 usr-mgt.xml 文件使用加密密码.我只是试图更新属性文件作为<代码><属性名= ConnectionPassword" > RG1Bz7q0VbyTLJ3t2yCKaoquXkZZ0XrgKZ8PgsYp4F4NNiIJ4c16aCEa2AkdYFL + jaPVmbOF/lFK1A0EWFXO35UsQ28DkwtiDKw9er4USm3DML9OlG + VE/QNXF3RoiLG00DJGeRrqFTuz5SpphGJk1ShidEYvIyzx/5KK4BK1r0CHfMTqNFvwwAr8QY6uUD/bgbn8T99LrleRJu6fA76l77CaruISBdtf/bx1BdE30xN/+ OJ5l3R9qrswLNEafxPRiHcvwuHP5BI31m6WiZ/6zUt5 + P0NYCYF8aw7qNPt99 + z5KAzslrk1pV3fOIirs7skhGwWDuayMa6HUU5f9CyA ==</性>
Not sure how I should tell the usr-mgt.xml file to use encrypted password. I just tried updating properties file as <Property name="ConnectionPassword">RG1Bz7q0VbyTLJ3t2yCKaoquXkZZ0XrgKZ8PgsYp4F4NNiIJ4c16aCEa2AkdYFL+jaPVmbOF/lFK1A0EWFXO35UsQ28DkwtiDKw9er4USm3DML9OlG+Ve/QNXF3RoiLG00DJGeRrqFTuz5SpphGJk1ShidEYvIyzx/5KK4BK1r0CHfMTqNFvwwAr8QY6uUD/bgbn8T99LrleRJu6fA76l77CaruISBdtf/bx1BdE30xN/+OJ5l3R9qrswLNEafxPRiHcvwuHP5BI31m6WiZ/6zUt5+P0NYCYF8aw7qNPt99+z5KAzslrk1pV3fOIirs7skhGwWDuayMa6HUU5f9CyA==</Property>
这失败了.显然,当我使用 unencrypted 密码时它可以工作.这意味着 usr-mgt.xml 文件无法理解它应该以加密方式读取密码.
This fails. Apparently it works when I use unencrypted password. This means the usr-mgt.xml file fails to understand that it should read the password as encrypted.
推荐答案
好像是你漏单了.首先,您需要根据您的要求更新 ciphertext.properties 文件.之后,您可以运行 ciphertool.bat -DConfigure 命令并加密密码.
It seems to be you missing the order. First you need to update the ciphertext.properties file according to your requirement. After that you can run the ciphertool.bat -DConfigure command and encrypt the password.
附:- 这个博客条目 帮助您详细了解 Secure Vault.
P.S. - This blog entry help you more about Secure Vault.
这篇关于如何在 WSO2 的 usr-mgt.xml 中加密 LDAP UserStore 密码?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
