Help
Not a customer? Start a free trial

Click the Start a free trial link to start a 15-day SaaS trial of our product and join our community as a trial user. If you are an existing customer do not start a free trial.

AppDynamics customers and established members should click the sign in button to authenticate.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

How do I use password encryption with extensions?

Bhuvnesh.Kumar
Moderator
Moderator

on ‎12-05-2017 01:54 PM - edited on ‎01-09-2023 09:28 AM by

Configuring extensions for password encryption

Most of our extensions support password encryption. To use this service, please follow these steps exactly as specified.

NOTE | Once done, you will have to uncomment the encryptionKey and encryptedPassword and update them with the ones that you generate in the config.yml file.

When you complete these steps, your extension will be ready for password encryption.

Contents

  1. Generate the encrypted password
  2. Configure config.yml with the encrypted password

 

STEP 1. How do I generate the encrypted password?

In this case, we will take Cassandra Monitoring Extension as an example. 

  1. Navigate to your Machine Agent installation folder, then head to the “monitors” folder.

      machineAgeng-folderdirectory-example.png

 

  1. Now enter your Extension folder, or in our case, “CassandraMonitor” and copy the name of the jar file (here, “cassandra-monitoring-extension.jar”)

  2. Open your terminal and navigate to the CassandraMonitor folder.

    machine Agent_CassandraMonitor-example.png

  3. In the folder within terminal, make sure the jar file is present  (i.e., cassandra-monitoring-extension.jar).

  4. Once you’ve verified all the details, run the following command. This command will give you your encrypted password.

    java -cp "cassandra-monitoring-extension.jar" com.appdynamics.extensions.crypto.Encryptor myKey myPassword

    The “myKey” in the command can be any random key that you'd like to use to encrypt the password. The “myPassword” is the plaintext password that you normally use to log in to your product. This is the password that you are trying to encrypt.

NOTE | If you have special characters in your plaintext password or your encryption key, you need to escape the special characters with a backslash (\) in the above command. 
For example, if the plaintext password is myPa$$word, the encryption command should look like this:
java -cp "cassandra-monitoring-extension.jar" com.appdynamics.extensions.crypto.Encryptor myKey myPa\$\$word

  1. Once you run the command, here is how the encrypted password will be generated:
    machineAgent-EncryptedString-example.png

    The value under “Encrypted String” above corresponds to your encrypted password.
     

  1. Save the values for your encryptionKey and Encrypted String in a text editor so that you don’t lose them.

 

STEP 2. Configuring config.yml with the encrypted password:

  1. In the config.yml of the extension, insert the encryptionKey and Encrypted String.

  2. The value forencryptionKey field is the random encryption key that was used in the command. For example, in the example above we used myKey as the encryption key.

The value of encryptedPassword is the result of the above command.
machineAgent-encryptresutl-example.png

 

Once you complete all the steps in this article, your extension will be ready to use the newly generated encrypted password.

Labels:
Comments
Todd.Angeles
AppDynamics Team
‎12-20-2017 08:57 AM

Hello,

 

I see that the tags include 4.3, 4.4 and 4.5. Can anyone confirm if password encryption is compatible with the 4.2.15.9 machine agent?

 

Todd

Bhuvnesh.Kumar
Moderator
Moderator
‎01-24-2018 02:42 PM

Hi Todd,

This does work with older versions of the Machine Agent as well.

Thanks,

Bhuvnesh

Konrad.Krieg
Discoverer
‎01-24-2019 01:51 PM

Hahaha not sure how I missed it - perhaps it wansn't in the particular extension doc before (it is now) but found the clues in the source code of ext :)

 

So I assume this applies to all "AppDynamics supported" extensions?

Do you have plans to make implementation of encryption mandatory for "vendor supported" as well?

Kunal.Gupta
AppDynamics Team (Retired)
‎01-26-2019 01:37 PM

Hi Konrad,

 

As of now, we don't have any plans to enforce encryption. But yes, since it is going to be part of our library, vendors can always use it. 

 

Thanks

Manoj.Alwani
Wanderer
‎02-13-2019 09:39 PM

What do you do with the regular password field (where we provide clear text password)?

 

Do we comment/remove it from config.yml file or set it to empty/null/""

 

password: ""

 

or

 

remove it altogether.

Kunal.Gupta
AppDynamics Team (Retired)
‎02-21-2019 04:43 PM

Hi Manoj,

 

You can just comment it out if you have the encryptedPassword defined. 

 

Thanks

Yusuke.Miyahara
AppDynamics Team
‎01-06-2021 04:25 PM

If someone faces the error below when encrypting,

Caused by: java.lang.ClassNotFoundException: sun.misc.BASE64Encoder

 

Please use JRE bundled with the machine agent.

Barry.Harwood
Builder
‎09-23-2021 12:37 AM

Is there a documented procedure for 

Please use JRE bundled with the machine agent.

Yusuke.Miyahara
AppDynamics Team
‎10-01-2021 02:10 PM

No, but it just means instead of using JRE installed on the machine,

~/Desktop/MA/monitors/KafkaMonitor$ java -cp "kafka-monitoring-extension.jar" com.appdynamics.extensions.crypto.Encryptor myKey mypass
Exception in thread "main" java.lang.NoClassDefFoundError: sun/misc/BASE64Encoder
 at com.appdynamics.extensions.crypto.Encryptor.encrypt(Encryptor.java:44)
 at com.appdynamics.extensions.crypto.Encryptor.main(Encryptor.java:65)
Caused by: java.lang.ClassNotFoundException: sun.misc.BASE64Encoder
 at java.base/jdk.internal.loader.BuiltinClassLoader.loadClass(BuiltinClassLoader.java:581)
 at java.base/jdk.internal.loader.ClassLoaders$AppClassLoader.loadClass(ClassLoaders.java:178)
 at java.base/java.lang.ClassLoader.loadClass(ClassLoader.java:522)
 ... 2 more

 using bundled JRE

~/Desktop/MA/monitors/KafkaMonitor$ ../../jre/bin/java -cp "kafka-monitoring-extension.jar" com.appdynamics.extensions.crypto.Encryptor myKey mypass
****************************Encrypted Text**************************
...

 

Claudia.Landivar
Community Manager
‎10-08-2021 05:57 PM

Thanks for expanding the conversation, @Barry.Harwood  and @Yusuke.Miyahara! Your contribution makes a difference.

Claudia Landivar

Community Manager & Editor 

Version history
Last update:
‎01-09-2023 09:28 AM
Updated by:

Thank you! Your submission has been received!

Oops! Something went wrong while submitting the form

By clicking subscribe, I have read and understood the Privacy Policy and Terms of Use.
Platform
Solutions
Learn

Company
Support