Question

1
Replies
87
Views
Filippo Beltramini (Phil5873)
RVC Srl
SSA
RVC Srl
IT
Phil5873 Member since 2019 3 posts
RVC Srl
Posted: January 26, 2021
Last activity: February 2, 2021
Posted: 26 Jan 2021 7:15 EST
Last activity: 2 Feb 2021 4:38 EST

Encrypt password in JAAS file

Hallo everyone,

I am using a jaas file to authenticate to a Kafka enterprise.

KafkaClient { org.apache.kafka.common.security.plain.PlainLoginModule required

username="MyUsername"

password="MyPassword"; };

This configuration, with the password in clear text, is working fine.

the file in the conf directory of tomcat and is passed as JVM parameter to tomcat as "-Djava.security.auth.login.config"

Now I am required to encrypt the password in the jaas file, but it looks I can't use the JCE encryption as described here: https://community.pega.com/knowledgebase/articles/security/85/creating-custom-cipher

Is there a way to encrypt the password in the file? And which are the steps on Pega necessary to have the password correctly read?

Thanks in advance to everyone who will be able to help me with this issue!

 

***Edited by Moderator: Pooja Gadige to add platform capability tag***
Pega Platform 8.5.1 Enterprise Application Development Security Financial Services Senior System Architect