My Oracle Support Banner

Using the weblogic.security.Encrypt or WLST encrypt() Utility to Replace Clear Text Password with an Encrypted Value (Doc ID 2298787.1)

Last updated on MARCH 18, 2019

Applies to:

Oracle WebLogic Server - Version 10.3.6 and later
Information in this document applies to any platform.

Goal

This document show how to encrypt a password using the weblogic.security.Encrypt utility or WLST encrypt() method. Once you have the encrypted value of your password, a configuration file can be modified to include this encrypted value instead of a clear text password. The scope of this is only with the configured password, so as not to have a clear text password in the configuration or startup script. It is dependent on another feature, component or utility being able to also read and use the encrypted value.

For example, when using the -Djavax.net.ssl.trustStorePassword, the configured password is initially clear text (in the configuration file or startup script) and allows the SSL processing to access the certificates required to complete the handshake. It is usually set with the -Djavax.net.ssl.trustStorePassword parameter within the setDomainEnv.sh, but could be set with any JAVA_OPTION argument or within a configuration file. 

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Goal
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.