2 Replies Latest reply on Oct 28, 2011 9:18 AM by vamshi.a

    JBOSS AS7 https keystore password protection

    vamshi.a

      In Jboss6 we have the facility to encrypt the connector password by defining the securityDomain and SSLImplementation in connector. Do we have the similar support in JBOSS AS7

       

       

       

      <!-- SSL/TLS Connector with encrypted keystore password configuration  -->

      <Connector port="8443" address="${jboss.bind.address}"

         maxThreads="100" minSpareThreads="5" maxSpareThreads="15"

         scheme="https" secure="true" clientAuth="true"

         sslProtocol="TLS"

         securityDomain="java:/jaas/encrypt-keystore-password"

         SSLImplementation="org.jboss.net.ssl.JBossImplementation" >

      </Connector>

       

       

       

       

      <server>

         <mbean code="org.jboss.security.plugins.JaasSecurityDomain"

            name="jboss.security:service=PBESecurityDomain">

            <constructor>

               <arg type="java.lang.String" value="encrypt-keystore-password"></arg>

            </constructor>

            <attribute name="KeyStoreURL">resource:localhost.keystore</attribute>

            <attribute name="KeyStorePass">{CLASS}org.jboss.security.plugins.FilePassword:${jboss.server.home.dir}/conf/keystore.password</attribute>

            <attribute name="Salt">welcometojboss</attribute>

            <attribute name="IterationCount">13</attribute>

         </mbean>

      </server>