Encrypting passwords (optional)

How to encrypt the passwords required by the installation and upgrade process.

About this task

This picture describes the steps for installing the Dynamic Workload Console. You are now at step 2, which is optional, about encrypting passwords.

Before you start the installation process, you can optionally encrypt the passwords you will use while installing, upgrading, and managing HCL Workload Automation. The encryption mechanism is based on your WebSphere Application Server Liberty Base installation. You can use either the {xor} or {aes} encoding. For more information, see Liberty: The limits to protection through password encryption.

To encrypt the passwords, proceed as follows:

Procedure

  1. Open a shell command line.
  2. Set the JAVA_HOME environment variable. If you do not have Java installed, you can optionally use the Java version provided with the HCL Workload Automation installation image and available in:
    HCL Workload Automation
    <IMAGE_DIR>/TWS/platform>/Tivoli_Eclipse_platform>/TWS/JavaExt/jre/
    Dynamic Workload Console
    <DWC_IMAGE_DIR>/java/jre/bin
  3. Browse to the following path:
    Liberty_installation_dir>/bin
  4. You can encrypt passwords using either of the following methods:
    {xor}
    securityUtility encode my_password>
    {aes}
    securityUtility encode --encoding=aes my_password>
    An output similar to the following is returned:
    xor format
    {xor}MjY+Lz4sbnGRLTs=
    aes format
    {aes}AFC3jj9cROYyqR+3CONBzVi8deLb2Bossb9GGroh8UmDPGikIkzXZzid3nzY0IhnSg==
  5. Provide the encrypted passwords when typing the commands or save them in the properties file for each command.