04-17-2020
If you have forgotten the password, you cannot use the key database (.kdb) and, I guess, you will need to delete and create a new one?
9 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
I'm tasked to change a user's password on multiple Linux systems (RH v3). I though copying the encrypted password from one Linux /etc/shadow file to another would work but I was wrong.
The long term solution is to establish an openLDAP Directory service, but for now I'm stuck with a manual... (1 Reply)
Discussion started by: benq70
1 Replies
2. UNIX for Advanced & Expert Users
Helo ,
I m using linux pam library for user and its password authentication.
I m creating new user and giving its password.I m giving password of 10 characters.now when I login in as that newly created user its ask me
$ su - ram
Password:
You are required to change your password immediately... (12 Replies)
Discussion started by: amitpansuria
12 Replies
3. Shell Programming and Scripting
Hi Friends.
I am new to scripting now i want to change the root password using the script with standard password.
which is the easy scripting to learn for the beginner, Thanks in advance. (2 Replies)
Discussion started by: kurva
2 Replies
4. Solaris
Hi Gurus
I have a few Sol 5.9 servers and i have enabled password less authentication between them for my user ID. Often i have found that when my password has expired,the login fails.
Resetting my password reenables the keys.
Do i need to do something to avoid this scenario or is this... (2 Replies)
Discussion started by: Renjesh
2 Replies
5. UNIX for Dummies Questions & Answers
Hi everyone!
I know you can extract public keys from a keystore using the keytool command.
But what is the process to extract a private key from a jks keystore and import into another jks keystore using keytool?
Any guidance would be greatly appreciated! I can't seem to find anything, I do... (0 Replies)
Discussion started by: Keepcase
0 Replies
6. UNIX for Dummies Questions & Answers
This morning my apache server was stalled (or hanging, frozen, whatever the proper term is) and no web pages would load. I wouldn't get any error page, just an infinitely loading browser. After restarting apache, everything was fine. The apache error logs had nothing in them besides logging the... (1 Reply)
Discussion started by: gadonj18
1 Replies
7. UNIX for Dummies Questions & Answers
Hi
We send *.csv with sensitive data to our customers. Our customers open those files with Excel.
A new requirement is that we password protect those CSV files.
I thought to pack them with ZIP and assign a password to the archive.
But Solaris 10 can't encrypt ZIP files.
$ zip -P... (12 Replies)
Discussion started by: slashdotweenie
12 Replies
8. Red Hat
A client is accessing our JBoss server. In the past, we set up a keystore and everything worked fine.
That certificat expired and we've installed the new one. Now the client is getting the following error -
HTTP/1.1 500 Internal Server Error
Date: Mon, 14 Apr 2014 13:25:44 GMT
Server:... (1 Reply)
Discussion started by: kkinney
1 Replies
9. Forum Support Area for Unregistered Users & Account Problems
I was unable to login and so used the "Forgotten Password' process. I was sent a NEWLY-PROVIDED password and a link through which my password could be changed. The NEWLY-PROVIDED password allowed me to login.
Following the provided link I attempted to update my password to one of my own... (1 Reply)
Discussion started by: Rich Marton
1 Replies
LEARN ABOUT DEBIAN
yhsm-keystore-unlock
yhsm-keystore-unlock(1) General Commands Manual yhsm-keystore-unlock(1)
NAME
yhsm-keystore-unlock - Unlock the keystore in a YubiHSM
SYNOPSIS
yhsm-keystore-unlock [options]
DESCRIPTION
In versions of the YubiHSM before 1.0, the YubiHSM could be protected using a 'HSM password'. The YubiHSM would unlock it's cryptographic
functions if the correct password was given, but it was a simple comparision test.
In YubiHSM 1.0, the password was changed into an actual key that was used to decrypt the contents of the YubiHSM internal key store, which
was then AES-256 encrypted using the new 'Master key' when stored in the device.
In YubiHSM 1.0, the option to also require an YubiKey OTP to unlock the keystore was also added. One or more 'Admin YubiKeys' can be con-
figured in the YubiHSM, and an OTP from one of these must also be provided before the YubiHSM will enable it's cryptographic functions.
The OTP is simply validated against the non-encrypted internal database (not key store) in the YubiHSM though, but together with a 'Master
key' not stored on the server with the YubiHSM, it provides enhanced security by being a second factor that an attacker can't just inter-
cept even if the server is compromised.
OPTIONS
-D, --device
device file name (default: /dev/ttyACM0).
-v, --verbose
enable verbose operation.
--debug
enable debug printout, including all data sent to/from YubiHSM.
--no-otp
skip the prompt for an OTP. For use by scripts where no OTP is required and the Master Key is stored on the server with the YubiHSM.
--stdin
read password and/or OTP from stdin rather than prompting for them. Python prompts does not accept piped input, so this option have
to be used to unlock the YubiHSM from a script for example.
EXIT STATUS
0 YubiHSM keystore successfully unlocked.
1 Failed to unlock keystore.
BUGS
Report python-pyhsm/yhsm-keystore-unlock bugs in the issue tracker <https://github.com/Yubico/python-pyhsm/issues/>
SEE ALSO
The python-pyhsm home page <https://github.com/Yubico/python-pyhsm/>
YubiHSMs can be obtained from Yubico <http://www.yubico.com/>.
python-pyhsm December 2011 yhsm-keystore-unlock(1)