Question

PrpcServiceUtils Want to encrypt pega.rest.server.url operator password

Hi Team,

A quick background - I am using prpcserviceutils command line tool to achieve export/import the prpc product. It is working good. however, as part of security requirements we cannot keep plain text password on server hence there is a need to encrypt the operator password used at pega.rest.server.url parameter which is supplied from within prpcserviceutils.properties file.

Just fyi .. we have already implemented/utilizing the keyring password file for DB connection but not sure if the same method can be used at operator password field.

Appreciate a quick response with some workaround...

Thanks and Regards

krishna Rai

**Moderation Team has archived post**

This post has been archived for educational purposes. Contents and links will no longer be updated. If you have the same/similar question, please write a new post.

Correct Answer
December 18, 2017 - 3:00am

Hi Krishna,

As i see currently there is no support for encrypted user password, may be you can raise an enhancement request for this requirement.

Regards

Mahesh

Comments

Keep up to date on this post and subscribe to comments

December 18, 2017 - 3:00am

Hi Krishna,

As i see currently there is no support for encrypted user password, may be you can raise an enhancement request for this requirement.

Regards

Mahesh

December 18, 2017 - 6:32am
Response to Mahesh Midthuru

Hi Mahesh,

Yes, sure. please help enhance this requirement on my behalf.

 

Regards

krishna

December 18, 2017 - 7:00am
Response to KrishnaR2370

@Lochan_DV can you help krishna on this requirement.

Mod
December 18, 2017 - 7:18am
Response to KrishnaR2370

Hi Krishna,

Please let us know the Pega platform version you are using currently.

Lochana | Community Moderator | Pegasystems Inc.

December 18, 2017 - 11:09am
Response to Lochan_DV

HI ,

I am using prpc ver 7.2.1.

Mod
December 19, 2017 - 6:38am
Response to KrishnaR2370

Hi Krishna,

An enhancement request has been created on our internal portal. The request ID is attached to your post above (under Related Support Case Number field.)
Please refer this number to your Account Executive for next steps.

Regards,

 

Lochana | Community Moderator | Pegasystems Inc.

Mod
December 18, 2017 - 3:31am

Hi Krishna,

Do let us know if you wish to file an enhancement request. We, moderators, could file on your behalf on our internal portal. However, you would have to follow-up with your Pega account executive for status and implementation.

Regards,

Lochana | Community Moderator | Pegasystems Inc.

Pega
December 18, 2017 - 5:17am

Hi Krishna,

Thanks for posting on PSC.

Refer this:-https://pdn.pega.com/community/pega-product-support/question/how-decrypt-and-compare-pega-operator-id-password-values

Hope it helps in your implementation.

Regards,

Asif

December 18, 2017 - 6:34am
Response to Asif Hasan

Thanks Asif,

My requirement is more towards runnning prpcserviceutils export and import with "no plain text" password in properties file.

 

regards

krishna

December 18, 2017 - 11:14am

Just to add , the command line prpcserviceutil tool does not use any app server as middleware layer , not sure as to where exactly I need to import the cert...

I just found a related article -  https://pdn.pega.com/support-articles/pkix-exception-testing-connectivity-http-service

my error message is very much related, please see below ...

    [java]                                        FAILED JOBS
     [java] System Name    : DefaultSystem
     [java] Status Message : REQUEST_EXECUTION_ERROR com.pega.pegarules.serviceclient.exception.PRPCServiceException: javax.net.ssl.SSLHandshakeException: com.ibm.jsse2.util.g: PKIX path building failed: java.security.cert.CertPathBuilderException: PKIXCertPathBuilderImpl could not build a valid CertPath.; internal cause is:
     [java]     java.security.cert.CertPathValidatorException: The certificate issued by CN=<company> Root CA G2 DEV, O=<company> Inc., C=<region> is not trusted; internal cause is:
     [java]     java.security.cert.CertPathValidatorException: Certificate chaining error

 

 

 

 

 

December 18, 2017 - 7:49pm
Response to KrishnaR2370

Hello Krishna,

Please add below JVM argument to check more detail on ssl handshake exception and share us the logs .

-Djavax.net.debug=ssl .

You need to import the certificate to the server where the PEGA application has been hosted .

Thanks,

Arun