You can generate an encryption key to encrypt sensitive information in the Talend Identity and Access Management configuration file.
A default encryption key is delivered with the installation of Talend Identity and Access Management. It is recommended to replace it with your own encryption in the keys.properties file.
Procedure
Results
tac.password
idp.db.password
oidc.db.password
oidc.dynRegService.initialAccessToken
oidc.keystore.password
oidc.key.password
syncope.password
sts.keystore.password
sts.key.password
- all secrets in the clients/*.json files.
If you have started Talend Identity and Access Management before changing the encryption key, your properties have already been encrypted with the default key. In this situation, you must write all the encrypted values again in their original plain text values, because the new encryption key cannot decrypt those properties.