To encrypt passwords in configuration files, you simply have to update the
cipher-tool.properties files that are stored in the
<EI<MI_HOME>/conf/security/ directory and then run the Cipher tool that is shipped with the product. Go to the links given below to see instructions in the WSO2 administration guide:
- Open a command terminal and navigate to the
Execute the following command to initialize secure vault:
On Linux/Mac OS sh securevault.sh On Windows securevault.bat
- You can then enter the secret alias (vault key) for the password that you want to encrypt. For example, enter 'PasswordAlias'.
- In the next step, enter the password of the keystore that is used for secure vault in the product. If the default product keystore is used, the password is 'wso2carbon'.
- Then, specify the plain text password that should be encrypted.
If you want to change the expression that is used to validate the password, you need to add the
org.wso2.SecureVaultPasswordRegEx system property to the