Im using Command Line Tool to import jar files into my applications. Is there any direct method to encrypt the Database password that i store in "prpcutils.properties" file. Currently im exploring about the passGen utility, any advice on how to proceed.
If you want to enable security for the database username and password, you can implement JCE "keyring" encryption by creating a pegarules.keyring file.
You can use keyring encryption to encrypt the username and password. To do this, run the KeyringImpl Java class, which accepts three parameters and generates the keyring file. The parameters are:
1. The path where the pegarules.keyring file is generated (including the filename)
2. The path to the prconfig.xml file
3. The path to the BIX distribution directory
To encrypt BIX passwords in the same file, pass an additional argument named "bix". Running the KeyringImpl Java file with this additional parameter prompts the user for the BIX username and password. The file encrypts the information that you enter.
Note: The runPega batch script assumes that the prconfig.xml provided as an argument to the Keyringimpl class is the same as the prconfig.xml file in the prweb/web-inf/classes folder. If the prconfig.xml file is in a different location, use the Java command directly as instructed in the PDN article How to encrypt database passwords using a JCE Keyring file.
I don't think this will work. The password from prpcUtils.properties is populated in the auto-generated prbootstrap.properties and prconfig.xml file. While the PassGen encrypted password would work for prboostrap.properties it will not work in prconfig.xml. You will need a keyring file for that. What version of Pega are you using prpcUtils with?
Thanks everyone for apt response and guiding. I have successfully Encrypted the DB password and deployed a jar in live environment without any DB password in prpcutils.properties or anywhere (I dont even know the DB password). Thanks again everyone.