Unable to configure FIPS compliant credential store
Issue
- Following the steps in the JBoss EAP documentation to create credential store results in the following error:
/subsystem=elytron/credential-store=myCS:add(modifiable=true, implementation-properties={"keyStoreType"=>"PKCS11", "external"=>"true", "keyAlias"=>"myAlias", externalPath="/path/to/credential-store.jceks"}, credential-reference={clear-text="mypassword"}, create=true)
{
"outcome" => "failed",
"failure-description" => {"WFLYCTL0080: Failed services" => {"org.wildfly.security.credential-store.myCS" => "
WFLYELY00004: Unable to start the service.
Caused by: org.wildfly.security.credential.store.CredentialStoreException: ELY09514: Unable to initialize cred
ential store
Caused by: java.security.KeyStoreException: JCEKS not found
Caused by: java.security.NoSuchAlgorithmException: JCEKS KeyStore not available"}},
"rolled-back" => true
}
Environment
- Red Hat JBoss Enterprise Application Platform (JBoss EAP)
- 7.4.4
- OpenJDK
- 1.8.352
- Red Hat Enterprise Linux (RHEL)
- 8.6
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.