Manually encrypting a configuration value

Use the system key tool to manually encrypt sensitive configuration values.

Use the system key tool to manually encrypt sensitive configuration values. Manually editing configuration files requires manually encrypting the value and pasting it in the appropriate location.

Procedure

  1. In your opscenterd directory, run the system key tool with the value parameter. 
    pathTo/opscenterd $ bin/opscenter_system_key_tool value

  2. Enter and confirm the value to encrypt.
    The system key tool displays the encrypted value.
  3. Copy and paste the encrypted value into the appropriate location in the configuration file. For an existing cluster, manually update the encryption-required fields in the cluster_name.conf file.
    For a new cluster or node, do not paste the encrypted value into the password or other encryption-required fields of the UI. OpsCenter automatically encrypts the sensitive fields such as passwords and writes the encrypted values to the configuration files.
  4. Repeat these steps for each configuration value that requires encryption.
  5. Restart OpsCenter.