Configuring database password encryption
Change the configuration of your locally stored database password to improve application security. Encrypt the password using AES encryption algorithm. This solution does not apply if you use Windows Authentication for the database access.
Procedure
- Stop the BigFix Inventory server.
-
To encrypt your database password with AES, execute the following command.
Provide your current database password.
Enter text: Re-enter text: {aes}xxxxXXXXxxxxXXXXxxxxXXXXxxxxXXXXxxxxXXXX
-
Update the database password in the server.xml file. Enter the value
generated in the previous step in the following code line:
- DB2 database:
<properties.db2.jcc databaseName='temadb' driverType='4' enableExtendedIndicators='2' password='{aes}xxxxXXXXxxxxXXXXxxxxXXXXxxxxXXXXxxxxXXXX' portNumber='50000' serverName='localhost' user='db2inst1'/>
- MSSQL database
<properties.microsoft.sqlserver databaseName='temadb' password='{aes}xxxxXXXXxxxxXXXXxxxxXXXXxxxxXXXXxxxxXXXX'' serverName='localhost' user='sa'/>
- Installation_directory/wlp/usr/servers/server1
- Installation_directory\wlp\usr\servers\server1
- DB2 database:
-
Update the database password in the database.yml file, located in the
following folder.
- Installation_directory/wlp/usr/servers/server1/config
- Installation_directory\wlp\usr\servers\server1\config
Enter the value generated in the step 2 in the following code line.
encrypted_password: "{aes}xxxxXXXXxxxxXXXXxxxxXXXXxxxxXXXXxxxxXXXX"
Tip: Follow the instruction mentioned here while editing the database.yml file. - Start the BigFix Inventory server.