Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 5.7.0, 5.7.1, 5.8.0
    • Fix Version/s: 5.8.0
    • Component/s: Doc, Java Agents
    • Labels:

      Description

      I've just noticed that in the docs it says:

      AM Encryption Class
      - This property does not apply to Java Agents 5.7, although it might appear in the AM console.
      

      This isn't quite true. The property

      com.iplanet.security.encryptor
      

      which I have just now aliased to:

      org.forgerock.agents.encryptor.classname
      

      does apply to Agents 5.7 and all other versions of the Java Agent. However the property itself must be defined in the bootstrap properties file. If it is visible in the AM console at all, it will have no effect (it is needed on Agent startup, and retrieving it from AM comes too late in the cycle of things).

      Also I have changed the default for this property to the classname for AESWrapEncyption which is a much more secure encryption algorithm than the largely defunct JCEEncryption class mentioned in the docs.

        Attachments

          Activity

            People

            • Assignee:
              joanne.henry Joanne Henry
              Reporter:
              tony.bamford Tony Bamford
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: