Overview
EnterWorks uses three encryption methods for encrypting the EPIM and EPX database passwords:
The encryption method varies according to what the setting is and where the setting is used:
-
EnterWorks encryption is used to encrypt the database connection settings. This value is indicated as:
- <db-connection-string-encrypted-with-EnterWorks-encryption>
-
Some settings use EPIM encryption to encrypt the EPIM or EPX database passwords. These values are indicated as:
-
<EPIM-password-encrypted-with-EPIM-encryption>
-
<EPX-password-encrypted-with-EPIM-encryption>
-
-
Some settings use EPX encryption to encrypt the EPIM or EPX database passwords. These values are indicated as:
-
<EPIM-password-encrypted-with-EPX-encryption>
-
<EPX-password-encrypted-with-EPX-encryption>
-
Unencrypted passwords are indicated as:
-
<unencrypted-EPIM-password>
-
<unencrypted-EPX-password>
Change the database password
If your installation is spread across multiple servers, some files will be located on different servers. Perform the following steps on each server containing any of the affected files.To set the passwords:
- Stop all EnterWorks services.
- Encrypt the new EPIM and EPX passwords using both the EPIM encryption method
and the EPX encryption method. Warning: The only characters allowed in the database password are alphanumeric, the exclamation point, or the underscore characters.
- Use the EPIM encryption
script to encrypt the new EPIM and EPX passwords. This
will give you the two passwords:
<EPIM-password-encrypted-with-EPIM-encryption>
<EPX-password-encrypted-with-EPIM-encryption>
- Use the EPX encryption
script to encrypt the new EPIM and EPX passwords.
<EPIM-password-encrypted-with-EPX-encryption>
<EPX-password-encrypted-with-EPX-encryption>
- Use the EPIM encryption
script to encrypt the new EPIM and EPX passwords. This
will give you the two passwords:
- Update the shared configuration properties to set:
epim.connection.password=<EPIM-password-encrypted-with-EPIM-encryption>
- Update the
Enterworks.properties files:
On the server hosting this Service Location EnableServerTomcat
<drive>:\Enterworks\EnableServer\tomcat\enterworks-props\Enterworks.properties
EnableServerWildflyController
<drive>:\Enterworks\EnableServer\jbossController\standalone\configuration\conf \Enterworks.properties
EnableServerWildflyWorker<n>
<drive>:\Enterworks\EnableServer\jbossWorkerN\standalone\configuration\conf\Enterworks.properties
EPX
<drive>:\Enterworks\EPX\bin\conf\Enterworks.properties
In each
Enterworks.properties
file, set:epim.db.password=<EPIM-password-encrypted-with-EPX-encryption>
epim.db.userPassword=<EPIM-password-encrypted-with-EPIM-encryption>
- Update the
esjdbc.properties
file.In the file:
<drive>:\Enterworks\EPX\bin\esjdbc.properties
set:
server.<EPXUID>.password=<EPX-password-encrypted-with-EPX-encryption>
- Update the microservices.
- Move to the folder:
<drive>:\Enterworks\enable2020\services\install
- For each of the following files:
create-enable-api-go-service.cmd
create-enable-channel-readiness-service.cmd
create-enable-type-ahead-service.cmd
dbConn
setting:- The
dbConn
setting is the database connection. Open an editor and create the newdbConn
setting value using the new unencrypted EPIM database password:server=<hostname>;user id=<unencrypted-EPIM-database-user-name>;password=<unencrypted-EPIM-password>;port=1433;database=<database-name>;encrypt=disable
- If
-encryptedMode=true
, the microservice is encrypted:- Use EnterWorks
encryption to encrypt the entire new
database connection string. For example:
enable2020-security.exe enc "server=MyHostName;user id=MyEpimDbUserName;password=MyEpimDbPassword;port=1433;database=NameOfMyDatabase;encrypt=disable"
- Set:
-dbConn="<new-encrypted-connection-string>"
- Use EnterWorks
encryption to encrypt the entire new
database connection string. For example:
- Else, if
-encryptedMode=false
, the microservice is not encrypted. Set:-dbConn="<new-unencrypted-connection-string>"
- Use the
create-<service>-service.cmd
script.
- Move to the folder:
- Restart all EnterWorks services.