Password verifcation failed for truststore

[nathanlcarlson]

/usr/local/tomcat/logs/catalina.out reported the following warning.

21-Sep-2018 10:49:03.736 WARNING [main] org.apache.tomcat.util.net.SSLHostConfig.getTruststore The provided trust store password could not be used to unlock and/or validate the trust store. Retrying to access the trust store with a null password which will skip validation.
 java.security.UnrecoverableKeyException: Password verification failed

[nathanlcarlson]

@William-Hill The reason "changeit" is set as the current password is because that is the default password for the truststore we are getting from /usr/local/java/jre/lib/security/cacert. We can either change it, which would takes some time and it is unclear what will be gained, or we can resolve the offending line in the tomcat server.xml. This offending line was a change made by me awhile ago when I had never heard of a tomcat truststore or keystore. The result of this option is that the password will remain "changeit".

[William-Hill]

@nathanlcarlson Sounds good. So can this issue be closed?

[nathanlcarlson]

612 Resolved this. It may be better to set the password to something that is not the default in the future.