How to encrypt password for "http_tls_key_password"

Before you post: Your responses to these questions will help the community help you. Please complete this template if you’re asking a support question.
Don’t forget to select tags to help index your topic!

1. Describe your incident:
How do I encrypt the password for this line “http_tls_key_password”
It works if I leave the password in plain text but I don’t want to leave it that way. I tried using a hashed password but it doesn’t work

2. Describe your environment:

  • OS Information:
    Ubuntu 22.04

  • Package Version:
    Graylog 5.0

  • Service logs, configurations, and environment variables:

3. What steps have you already taken to try and solve the problem?
Tried using a hashed password with the following
echo -n “Enter Password: " && head -1 </dev/stdin | tr -d ‘\n’ | sha256sum | cut -d” " -f1

4. How can the community help?
Provide an answer

Helpful Posting Tips: Tips for Posting Questions that Get Answers [Hold down CTRL and link on link to open tips documents in a separate tab]

Hey @jtsss

I havent found a way of doing that which was one of our concerns, Im am interested if you make that work. Check Github

A hashed value isn’t useful - we can’t derive the key password from that.
If you don’t like storing it in plaintext in the conf file you can supply it via the corresponding environment variable. Then you can populate that at runtime from a secure location.

1 Like

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.