hi ryan
can you list the password aliases?
$GF_HOME/bin/asadmin list-password-aliases -p $AS_ADMIN_PORT
Password option "password" defined in the environment is ignored.
Nothing to list.
thx
Martin
______________________________________________
Verzicht und Vertraulichkeitanmerkung/Note de déni et de confidentialité
Diese Nachricht ist vertraulich. Sollten Sie nicht der vorgesehene Empfaenger sein, so bitten wir hoeflich um eine Mitteilung. Jede unbefugte Weiterleitung oder Fertigung einer Kopie ist unzulaessig. Diese Nachricht dient lediglich dem Austausch von Informationen und entfaltet keine rechtliche Bindungswirkung. Aufgrund der leichten Manipulierbarkeit von E-Mails koennen wir keine Haftung fuer den Inhalt uebernehmen.
Ce message est confidentiel et peut être privilégié. Si vous n'êtes pas le destinataire prévu, nous te demandons avec bonté que pour satisfaire informez l'expéditeur. N'importe quelle diffusion non autorisée ou la copie de ceci est interdite. Ce message sert à l'information seulement et n'aura pas n'importe quel effet légalement obligatoire. Étant donné que les email peuvent facilement être sujets à la manipulation, nous ne pouvons accepter aucune responsabilité pour le contenu fourni.
> Date: Mon, 21 Sep 2009 07:35:55 -0700
> From: glassfish_at_javadesktop.org
> To: users_at_glassfish.dev.java.net
> Subject: Password aliases not usable in JVM options?
>
> Hi,
>
> I want to secure my keystore.jks file by changing the password. I changed the master password and the key password (both using same new password), then added the following JVM option to GlassFish's domain.xml:
>
> <jvm-options>-Djavax.net.ssl.keyStorePassword=MySecretPassword</jvm-options>
>
> GlassFish starts without errors. Those instructions came from here:
>
> http://docs.sun.com/app/docs/doc/820-4285/fxybd?a=view
>
> Next I wanted to create a password alias so that the password is never shown in plain text in config files or anywhere else. I created a password alias using asadmin, then updated the jvm option to look like this:
>
> <jvm-options>-Djavax.net.ssl.keyStorePassword=${ALIAS=SslKeystorePasswordAlias}</jvm-options>
>
> Now when I start GlassFish I get an exception with the nested cause being:
>
> java.lang.IllegalStateException: Keystore was tampered with, or password was incorrect
>
> That makes me think the key alias was not replaced with the real password. Can someone please confirm whether or not I can use password aliases in JVM options, and tell me if there is a better way of securing my keystore?
>
>
> Thanks,
> Ryan
> [Message sent by forum member 'rdelaplante' (ryan_at_ijws.com)]
>
> http://forums.java.net/jive/thread.jspa?messageID=364931
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: users-unsubscribe_at_glassfish.dev.java.net
> For additional commands, e-mail: users-help_at_glassfish.dev.java.net
>
_________________________________________________________________
Bing brings you health info from trusted sources.
http://www.bing.com/search?q=pet+allergy&form=MHEINA&publ=WLHMTAG&crea=TXT_MHEINA_Health_Health_PetAllergy_1x1