Question

2
Replies
647
Views
NK_REDDY Member since 2013 11 posts
Cognizant
Posted: 4 years ago
Last activity: 4 years 4 months ago
Closed

SAML SSO : Retreive Keystore Password at Runtime

We are working on implementing SAML based SSO in PEGA 7.1.8 version and the problem we are facing is that we want to retrieve the Keystore password at run-time (by passing the encrypted string) instead of storing the Keystore password directly in the PEGA Database. PEGA OOB doesn't support this and we have raised SR as well and seems like this feature may not be available in near future. The problem with storing Keystore password directly in PEGA DB is that it may change and also security concerns as the same Keystore is used by many PEGA & Non-PEGA applications.

I am planning to override/customize Keystore related activities defined in Data-Admin-Security-SSO-SAML class to retrieve the KeyStore password using Java code and PEGA Keystore rule contains the encrypted string instead of actual password.

Keystore_Activities_in_PEGA.JPG

Please let me know if you have any suggestions or alternative solutions?

Thanks

Narendra

Security
Moderation Team has archived post
Share this page LinkedIn