Creating a system key to encrypt sensitive configuration values
Create the system key that enables automatically or manually encrypting sensitive configuration values such as passwords. Copy the system key to the agent for each node.
Follow these instructions to create the system key that enables automatically or manually encrypting sensitive configuration values such as passwords. Copy the system key to the agent for each node. Optionally, configure a custom name for the opsc_system_key or a path to the key when placed in a non-default location.
Prerequisites
- If OpsCenter was installed by the Installer-No Services installer, tarball, or RPM package, install the pycrypto library.
- If using 256-bit encryption key strength, upgrade the JRE with enhanced security
jar files. Download and install the Java Cryptography Extension (JCE), unzip the
jar files, and place them under
$JAVA_HOME/jre/lib/security
.
address.yaml
The location of the address.yaml file depends on the type of installation:
- Installer-Services or package installations: /var/lib/datastax-agent/conf/address.yaml
- Installer-No Services or tarball installations: install_location/conf/address.yaml
opscenterd.conf
The location of the opscenterd.conf file depends on the type of installation:
- Installer-Services or package installations: /etc/opscenter/opscenterd.conf
- Installer-No Services or tarball installations: install_location/conf/opscenterd.conf
- Windows installations: Program Files (x86)\DataStax Community\opscenter\conf\opscenterd.conf