6.7. 初始化密码 Vault

流程

• 使用 tomcat-vault.sh 脚本初始化密码库：

  # JWS_HOME/tomcat/bin/tomcat-vault.sh
  
  WARNING JBOSS_HOME may be pointing to a different installation - unpredictable results may occur.
  
  =========================================================================
  
    JBoss Vault
  
    JBOSS_HOME: JWS_HOME/tomcat
  
    JAVA: java
  
  =========================================================================
  
  **********************************
  ****  JBoss Vault  ***************
  **********************************
  Please enter a Digit::
  0: Start Interactive Session
  1: Remove Interactive Session
  2: Exit
  
  0
  
  Starting an interactive session
  Enter directory to store encrypted files: JWS_HOME/tomcat/
  Enter Keystore URL: JWS_HOME/tomcat/vault.keystore
  Enter Keystore password: <vault_password>
  Enter Keystore password again: <vault_password>
  Values match
  Enter 8 character salt: 1234abcd
  Enter iteration count as a number (Eg: 44): 120
  Enter Keystore Alias: my_vault
  Initializing Vault
  Jun 16, 2018 10:24:27 AM org.apache.tomcat.vault.security.vault.PicketBoxSecurityVault init
  INFO: PBOX000361: Default Security Vault Implementation Initialized and Ready
  Vault Configuration in tomcat properties file:
  ********************************************
  ...
  KEYSTORE_URL=JWS_HOME/tomcat/vault.keystore
  KEYSTORE_PASSWORD=MASK-3CuP21KMHn7G6iH/A3YpM/
  KEYSTORE_ALIAS=my_vault
  SALT=1234abcd
  ITERATION_COUNT=120
  ENC_FILE_DIR=JWS_HOME/tomcat/
  ...
  ********************************************
  Vault is initialized and ready for use
  Handshake with Vault complete
  Please enter a Digit::
  0: Store a secured attribute
  1: Check whether a secured attribute exists
  2: Exit
  
  2

  Copy to Clipboard Toggle word wrap