我正在运行 WSO2 GR 安装,它运行良好。但是,当我尝试使用以下说明启用 SecureVault 时,服务器无法启动。 wso2carbon.log 中的唯一输出是:
TID: [0] [Greg] [2013-12-19 13:44:12,307] WARN {org.wso2.securevault.secret.handler.SecretManagerSecretCallbackHandler} - SecretManager has not been initialized.Cannot collect secrets. {org.wso2.securevault.secret.handler.SecretManagerSecretCallbackHandler}
TID: [0] [Greg] [2013-12-19 13:44:12,315] WARN {org.wso2.securevault.secret.handler.SecretManagerSecretCallbackHandler} - SecretManager has not been initialized.Cannot collect secrets. {org.wso2.securevault.secret.handler.SecretManagerSecretCallbackHandler}
TID: [0] [Greg] [2013-12-19 13:44:12,317] WARN {org.wso2.securevault.secret.handler.SecretManagerSecretCallbackHandler} - SecretManager has not been initialized.Cannot collect secrets. {org.wso2.securevault.secret.handler.SecretManagerSecretCallbackHandler}
TID: [0] [Greg] [2013-12-19 13:44:12,366] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Starting WSO2 Carbon... {org.wso2.carbon.core.internal.CarbonCoreActivator}
TID: [0] [Greg] [2013-12-19 13:44:12,366] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Operating System : Linux 2.6.32-358.el6.x86_64, amd64 {org.wso2.carbon.core.internal.CarbonCoreActivator}
TID: [0] [Greg] [2013-12-19 13:44:12,366] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Java Home : /usr/lib/jvm/jdk1.6.0_45/jre {org.wso2.carbon.core.internal.CarbonCoreActivator}
TID: [0] [Greg] [2013-12-19 13:44:12,366] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Java Version : 1.6.0_45 {org.wso2.carbon.core.internal.CarbonCoreActivator}
TID: [0] [Greg] [2013-12-19 13:44:12,366] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Java VM : Java HotSpot(TM) 64-Bit Server VM 20.45-b01,Sun Microsystems Inc. {org.wso2.carbon.core.internal.CarbonCoreActivator}
TID: [0] [Greg] [2013-12-19 13:44:12,367] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Carbon Home : /opt/wso2/gr {org.wso2.carbon.core.internal.CarbonCoreActivator}
TID: [0] [Greg] [2013-12-19 13:44:12,367] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Java Temp Dir : /opt/wso2/gr/tmp {org.wso2.carbon.core.internal.CarbonCoreActivator}
TID: [0] [Greg] [2013-12-19 13:44:12,367] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - User : wso2, en-US, Europe/Amsterdam {org.wso2.carbon.core.internal.CarbonCoreActivator}
TID: [0] [Greg] [2013-12-19 13:44:12,451] WARN {org.wso2.carbon.core.bootup.validator.SystemValidator} - Could not validate the system for configuration parameter : certFingerprint {org.wso2.carbon.core.bootup.validator.SystemValidator}
TID: [0] [Greg] [2013-12-19 13:44:12,453] WARN {org.wso2.carbon.core.bootup.validator.util.ValidationResultPrinter} - RAM size (MB): 1500 of the system is below the recommended minimum size :2048 {org.wso2.carbon.core.bootup.validator.util.ValidationResultPrinter}
TID: [0] [Greg] [2013-12-19 13:44:12,466] INFO {org.wso2.carbon.databridge.agent.thrift.AgentHolder} - Agent created ! {org.wso2.carbon.databridge.agent.thrift.AgentHolder}
TID: [0] [Greg] [2013-12-19 13:44:12,491] INFO {org.wso2.carbon.databridge.agent.thrift.internal.AgentDS} - Successfully deployed Agent Client {org.wso2.carbon.databridge.agent.thrift.internal.AgentDS}
TID: [0] [Greg] [2013-12-19 13:44:23,209] INFO {org.apache.catalina.startup.TaglibUriRule} - TLD skipped. URI: http://tiles.apache.org/tags-tiles is already defined {org.apache.catalina.startup.TaglibUriRule}
我使用以下步骤配置了 SecureVault:
更改
repository/resources/security/wso2carbon.jks
上的密码,repository/resources/security/client-truststore.jks
key 存储更改 wso2carbon.jks keystore 中 wso2carbon 私钥的密码。
修改
repository/conf/tomcat/catalina-server.xml
,在 SSL 连接器的连接器协议(protocol)部分添加:keystoreFile="/opt/wso2/gr/repository/resources/security/wso2carbon.jks" keystorePass="newPassword" keyAlias="wso2carbon"`
填写
repository/conf/security/cipher-text.properties
文件包含以下内容:Carbon.Security.KeyStore.Password=[newPassword] Carbon.Security.KeyStore.KeyPassword=[newPassword] Carbon.Security.TrustStore.Password=[newPassword] Datasources.WSO2_CARBON_DB.Configuration.Password=[newPassword]`
运行
bin/ciphertool.sh -Dconfigure
。这看起来很成功。将密码放入名为
password
的文件中在 WSO2 基本目录中重启GR
完成这些步骤后,我得到了上面列出的输出。
有人知道如何解决这个问题或从哪里获取更多信息吗?
最佳答案
您是否将服务器作为后台进程启动,或者只是在控制台中运行服务器...?如果您从后台启动,则需要创建一个 tmp 文件(CARBON_HOME 目录中的 password-tmp)来提供主密码。如果您仅启动服务器运行脚本,那么您将被提升为输入主密码,您可以在命令行中提供它。您可以通过 here 找到更多详情
关于java - 启用 Carbon SecureVault 后 WSO2 GR 无法启动,我们在Stack Overflow上找到一个类似的问题: https://stackoverflow.com/questions/20682551/