Initial IDP 3 Install Start Failing - key password issue
Ullfig, Roberto Alfredo
rullfig at uic.edu
Tue Feb 6 12:30:39 EST 2018
Ay, so it is the cookie key I set but I see one problem with the installation. I usually just generate passwords with a program. This particular password has a '\' in it and it's missing from idp.sealer.storePassword line in idp.properties. So please, I recommend that you restrict the characters used for passwords during installation and disallow characters that won't propagate properly to the configuration files.
---
Roberto Ullfig - rullfig at uic.edu
Systems Administrator
Enterprise Architecture and Development | ACCC
University of Illinois - Chicago
From: Ullfig, Roberto Alfredo
Sent: Tuesday, February 06, 2018 11:09 AM
To: users at shibboleth.net
Subject: Initial IDP 3 Install Start Failing - key password issue
Hello,
Getting these errors when trying to start the IDP for the first time:
2018-02-06 10:41:03.095 [ERROR] : net.shibboleth.utilities.java.support.security.BasicKeystoreKeyStrategy: Error loading key named 'secret1'
java.io.IOException: Keystore was tampered with, or password was incorrect
...
Caused by: java.security.UnrecoverableKeyException: Password verification failed
I found documentation here:
https://wiki.shibboleth.net/confluence/display/IDP30/SecretKeyManagement
but they keytool command assumes that you know a password but I never supplied a password for this while installing the IDP. The only passwords supplied were for Backchannel PKCS12 and Cookie Encryption Key. Very confused as to these error messages. Any help would be appreciated. Thanks!
---
Roberto Ullfig - rullfig at uic.edu<mailto:rullfig at uic.edu>
Systems Administrator
Enterprise Architecture and Development | ACCC
University of Illinois - Chicago
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://shibboleth.net/pipermail/users/attachments/20180206/368ca639/attachment.html>
More information about the users
mailing list