Changing passwords for the server KeyStore

You can change the Java KeyStore password for the server.

About this task

The server Java KeyStore password must be identical to its certificate password. After you change both the server KeyStore password and certificate password, you must update the password in the server properties.

Procedure

  1. Stop the server.
  2. Open a command-line window, and go to the appdata/conf directory.
  3. Change the server KeyStore password by using this command:
    keytool -storepasswd -new newStorePassword -keystore server.keystore
    -storepass changeit
    The default server password is changeit. The keytool application is included in the Java developer kit and is not part of HCL DevOps Deploy (Deploy).
  4. Change the certificate password by using this command:
    keytool -keypasswd -alias server -keypass changeit -new newKeyPassword -keystore server.keystore -storepass newStorePassword
    The default server alias is server.
  5. In a text editor, open the server-install\conf\server\secured-installed.properties file.
  6. Specify the new Java KeyStore password for the server in the following line of code:
    server.keystore.password=newStorePassword
    The javax.net.ssl.trustStorePassword property takes precedence over the secured-server.keystore.password property. If it is present in server-install\conf\server\secured-installed.properties file, update its password with this code: javax.net.ssl.trustStorePassword=newpassword. This property applies to all relevant KeyStores.
  7. Specify the new Certificate password for the server in the following line of code:
    server.key.password=newKeyPassword
  8. Start the server.

Results

The server KeyStore password is changed and is obfuscated in the server-install/conf/server/secured-installed.properties file.