Support Questions
Find answers, ask questions, and share your expertise

Custom passphrase while generating jceks through hadoop credential

Highlighted

Custom passphrase while generating jceks through hadoop credential

New Contributor

We are attempting to have a secure way of connecting oracle db through sqoop. If we use hadoop credential to create a password alias, connectivity works just fine.

hadoop credential create mydb.password.alias -provider jceks://hdfs/user/abc/mysql_hadoop.password.jceks

The jceks file created by hadoop credential has a default password "none". But our security requirement mandate to have a secure password for jceks file. So we are attempting to create one through keytool

keytool -importpass -alias keystore.test.password -keystore mysql_keytool.password.jceks -storetype JCEKS -storepass mysupersecret -keypass mysupersecret

But using the above mysql_keytool.password.jceks with sqoop throws an error

moreCaused by: java.security.UnrecoverableKeyException: Password verification failed
... 24 more
 Error resolving password  from the credential providers

Cany anyone help us figure out we are doing wrong with keytool ? Or is there a way to add custom passphrase while generating jceks through hadoop credential ?

Don't have an account?