1. Support Portal
  2. RadiantOne IDDM (Formerly Known As FID)
  3. SSL

How do I change the default keystore password in RadiantOne FID

Shraddha Jamadade
Updated

 

Updating the default password for the keystore (trust store) in RadiantOne VDS is a crucial step in maintaining a secure deployment. Below is a step-by-step guide to help you replace the keystore, update the password, and restart the system for the changes to take effect.

Step 1: Confirm your rli.keystore file is in the following location:

<RLI_HOME>/vds/vds_server/conf/rli.keystore

Step 2: Confirmation of Alias and current password

<RLI_HOME>/vds/jdk/bin> keytool -list -v -keystore <RLI_HOME>/vds/vds_server/conf/rli.keystore

Step 3: Change the storepass/keypass on the rli.keystore file to your chosen password (make sure they are the same):

In this step, you will be changing the Keypass password first and the Storepass afterwards. Make sure that in the Storepass, you use the new Keypass already configured in the command.

Keypass:

<RLI_HOME>/vds/jdk/bin>keytool -keypasswd -keystore <Keystore path> -storepass <current keystore password> -alias <aliasname> -keypass <keypassword> -new <new keypassword>

Storepass:

<RLI_HOME>/vds/jdk/bin>keytool -storepasswd -keystore <Keystore path> -storepass <current keystore password> -keypass <newkeypassword> -new <new storepassword>

 

Step 4: Change the password in the Server Control Panel:

<RLI_HOME>/vds/bin>instancemanager -u -n vds_server -p 2389 -P <key password>

Step 5: Generate the AES hash for the password that you choose using the VDSutility:

For Linux:
<RLI_HOME>/vds/bin/advanced>./runVDSutility.sh

For Windows:
<RLI_HOME>/vds/bin>VDSutility.exe

Type 9 as the option to encrypt a password and enter your newly created password. Be sure to copy this password down for future use (in later steps).

 

Note: If your password is more than 11 characters, a * will show up. 

Step 6: Copy the AES hash password created in the next step and set up the information in the appropriate files:

File Location: <RLI_HOME>/vds/config/saml

Files:

client.properties
   query.properties
   serverEncryption.properties

Attributes to change:

signCryptedKeystorePassword
  signCryptedCertifPassword
  encCryptedKeystorePassword
  encCryptedCertifPassword

Step 7: There is one more file to modify that is in a different location, but with the same AES hash password created before:

File Location: <RLI_HOME>vds/ vds_server/conf/saml/server/

File:

AttributeService.properties

Attributes to change:

Signaturekeystorepassword
  Signaturecertificatepassword
  Encryptionkeystorepassword
  encryptioncertificatepassword

Optional: Stop All Servers (Clean Restart)

If needed, stop all VDS services before performing a full restart

 

 

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.

Articles in this section