Updating the Encryption Key on Oracle WebLogic
With Oracle WebLogic, PSCipher.bat or PSCipher.sh is stored in the location
<PS_CFG_HOME>\webserv\<domain_name>, and the psvault is stored in the location <PS_CFG_HOME>\webserv\<domain_name>\piaconfig\properties.
To update the encryption key:
Change directory to <PS_CFG_HOME>\webserv\<domain_name>\piabin.
For example, where the web server domain is peoplesoft:
cd PS_CFG_HOME\webserv\peoplesoft\piabin
Run PSCipher –buildkey to create a new key in the key file.
For example, on Microsoft Windows:
PSCipher.bat -buildkey Your environment has been set. A new key of version {V2.1} is generated successfully
For example. on UNIX:
PSCipher.sh -buildkey Your environment has been set. A new key of version {V2.1} is generated successfully
Copy <PS_CFG_HOME>\webserv\<domain_name>\piaconfig\properties\psvault to the equivalent location on all other web server hosts and to <PS_HOME>\secvault\psvault on all application servers in your system.
Modify the encrypted text fields as described in the following sections.
The configuration.properties file is located in the following directory:
<PS_CFG_HOME>\webserv\<domain_name>\applications\peoplesoft\PORTAL.war\WEB-INF\psftdocs\<PIA_site_name>
The following encrypted text values in the configuration.properties file need to updated:
WebUserId=encrypted_password
WebPassword=encrypted_password
Submit the values for these properties to PSCipher, and copy the generated encrypted text to the WebUserID and WebPassword properties in the configuration.properties file, overwriting any previous value assigned to the property.
On the Integration Gateway, you need to modify the following files:
gatewayUserProfile.xml
integrationGateway.properties
The gatewayUserProfile.xml file is located in the following directory:
<PS_CFG_HOME>\webserv\<domain_name>\applications\peoplesoft\PSIGW.war\WEB-INF
In the gatewayUserProfile.xml file, update the following text value:
<password>{V2.1}encrypted_password</password>
Note: There can be more than one password field in this
file. There could be different <password>
</password>
entries for different users. You should use PSCipher to encrypt all
<password> </password>
entries.
Submit the values for
these properties to PSCipher, and copy the generated encrypted text
to the <password>
</password>
entry in the gatewayUserProfile.xml file,
overwriting any previous value.
The integrationGateway.properties file is located in the following directory:
<PS_CFG_HOME>\webserv\<domain_name>\applications\peoplesoft\PSIGW\WEB-INF
Update the following text values stored in the integrationGateway.properties file.
Note: If you are not currently assigning a value to one of the following properties, you don't need to supply a value.
ig.isc.password=
ig.isc.$NODENAME.password=
#ig.certificatePasswd=
secureFileKeystorePasswd=
#ig.jms.JMSTargetConnector.JMSProvider.Password=
# ig.jms.Queue1.Password=
# ig.jms.Topic1.Password=
#ig.jms.Topic1.NodePassword=
Submit the values for these properties to PSCipher, and copy the generated encrypted text to the corresponding entries in the integrationGateway.properties file, overwriting any previous value.
You need to update the wss.properties file used for Web Services Remote Portal (WSRP) and Web Services Security (WSS).
The wss.properties file needs to be updated in the following locations:
<PS_CFG_HOME>\webserv\<domain_name>\applications\peoplesoft\PORTAL\WEB-INF\classes\
<PS_CFG_HOME>\webserv\<domain_name>\applications\peoplesoft\pspc\WEB-INF\classes\
Update the following text entry in the wss.properties file in both locations:
org.apache.ws.security.crypto.merlin.keystore.password=
Submit each password value to PSCipher, and copy the generated encrypted text to the corresponding entries in the wss.properties file, overwriting any previous value.