This documentation is for WSO2 Carbon 4.4.3. View documentation for the latest release.
Page Comparison - Resolving Encrypted Passwords (v.6 vs v.7) - Carbon 4.4.3 - WSO2 Documentation
Due to a known issue do not use JDK1.8.0_151 with WSO2 products. Use JDK 1.8.0_144 until JDK 1.8.0_162-ea is released.

Versions Compared


  • This line was added.
  • This line was removed.
  • Formatting was changed.


  1. Create a new file in the <PRODUCT_HOME> directory. The file should be named according to your OS as explained below.
    • For Linux: The file name should be password-tmp.
    • For Windows: The file name should be password-tmp.txt.

    When you start the server (see step 3 below), the keystore password will be picked from this new file. Note that this file is automatically deleted from the file system after the server starts. Therefore, the admin has to create a new text file for every startup instanceevery time the server starts.

    Alternatively, if you want to retain the password file after the server starts, the file should be named as follows:

    • For Linux: The file name should be password-persist.
    • For Windows: The file name should be password-persist.txt.
  2. Add "wso2carbon" (the primary keystore password) to the new file and save. By default, the password provider assumes that both private key and keystore passwords are the same. If not, the private key password must be entered in the second line of the file.
  3. Now, start the server as a background process by running the following command.

    Code Block
    ./ start
  4. Start the server by running the product start-up script from the <PRODUCT_HOME>/bin/ directory by executing the following command:

    Code Block
    daemon. sh -start