How to overcome JBoss vault issues including decrypting sensitive passwords?

Solution In Progress - Updated -

Issue

  • Vault is good for obscuring passwords but not protection against an intruder from obtaining credentials.
  • We have noticed that there is code on the internet to decrypt the Vault Password as well as change the keystore password. What actions can we take to prevent this?

Environment

  • Red Hat JBoss Enterprise Application Platform (EAP)
    • 6.x
    • 7.x

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.