Current Scope of Keystore

Keystore

A keystore is a secure storage system used to hold cryptographic keys and certificates, enabling encryption, decryption, and authentication while protecting sensitive key material from unauthorized access.

• The keystore stores secret-key entries used by OIPA at runtime, including the default encryption alias OIPAALIASDEFAULT and the HMAC alias OIPAALIASHMACKEY.

• Keystore file: oipakeystore.p12.

• Stored in the shared configuration directory (shared or conf).

• Password protected with default value changeit, retrieved through the OIPA_KEYSTORE_PWD environment variable.

• Permissions must be set to chmod 600 (owner-only access).