Runtime Re-encryption - Alfresco Content Services - 23.4 - 23.4 - Ready - Alfresco - external

Alfresco Content Services

Platform
Alfresco
Product
Alfresco Content Services
Release
23.4
License

Re-encryption occurs while the repository is running. For runtime re-encryption, follow the steps below:

  1. Backup the current keystore to backup-keystore.
    mv keystore backup-keystore
    mv keystore-passwords.properties backup-keystore-passwords.properties
    					
  2. Copy your new keystore over the old keystore.
  3. In your JMX console, execute the operation Encryption > Operations > Encrypt.

    This will re-read the main and backup keystores and re-encrypt the encrypted properties. The repository can continue to run during this operation; any newly-created encrypted properties will be encrypted with the new key.

    Note: Only a single re-encryption can be done at a particular time. If a re-encrypt is already running then subsequent requests have no effect.