Resolved from fix pack
5

Encrypting scala.password in server.init properties

You can encrypt the scala.password property in the WEBGUI_HOME/etc/server.init initialization file to use AES or FIPS compliant encryption. Use the standard procedure to set up Web GUI password encryption and replace the password value with an encrypted value generated with the ncw_aes_crypt or ncw_fips_crypt tools.

Before you begin

Encryption is controlled by the webtop.password.encryption and webtop.fips parameters. The encryption for scala.password is dependant of what values are specified there. The webtop.ssl.trustStore password is also controlled by this parameter.

The scala.password will show up as encrypted in the Dashboard Application Services Hub system properties portlet even if encryption is not specified.

Procedure

  • Set up for AES encryption
    1. Follow the procedure in Encrypting Web GUI passwords.
    2. Run the following command:
      WEBGUI_HOME/bin/ncw_aes_crypt
    3. Enter the password for the user ID you are using to connect to IBM Operations Analytics - Log Analysis.
    4. Copy the password encrypted value written to the command line.
    5. Edit the WEBGUI_HOME/etc/server.init initialization file and set the value for scala.password to the generated password that you copied.
      'scala.password'=<GENERATED PASSWORD>
      Note: The generated password is terminated with two equal signs '=='. Copy the encrypted password as-is, including the '=='.
  • Set up for FIPS encryption
    1. Follow the procedure in Encrypting passwords using FIPS 140–2 mode encryption.
    2. Encrypt the unity password using the following command:
      WEBGUI_HOME/bin/ncw_fips_crypt -password <UNITY_PASSWORD> -key WEBGUI_HOME/etc/encrypt/vault.key
    3. Copy the generated password.
    4. Edit the WEBGUI_HOME/etc/server.init initialization file and set the value for scala.password to the generated password that you copied.
      'scala.password'=<GENERATED PASSWORD>
      Note: The generated password is terminated with two equal signs '=='. Copy the encrypted password as-is, including the '=='.

What to do next

You can check the IBM Operations Analytics - Log Analysis configuration properties in Dashboard Application Services Hub.
  1. Click Troubleshooting and Support > System Information for Netcool/OMNIbus Web GUI.
  2. Use your web browser Find function to search for scala.password.