How to remove unencrypted Windows credentials from the Keep Alive service configuration file.

How to remove unencrypted Windows credentials from the Keep Alive service configuration file.

book

Article ID: KB0077740

calendar_today

Updated On:

Products Versions
Spotfire Web Player 7.0 and lower

Description

Depending on the type of authentication you have configured for your Spotfire Web Player, you may be required to enter the WindowsUserName and WindowsUserPassword of your Windows account in the Spotfire.Dxp.Web.KeepAlive.exe.config. This is stored in plaintext and there is no way to encrypt this configuration file.

Issue/Introduction

How to remove unencrypted Windows credentials from the Keep Alive service configuration file.

Resolution

The plain text storage of the Windows credentials can be avoided by having the Keep Alive service run as a specific Windows Account instead of setting Windows username/password in configuration file. To configure, do the following.
 
  1. Run > Services.msc > Right click on "TIBCO Spotfire Web Player Keep Alive" service > Properties > Open the "Log on" tab > Select "This account".
  2. Enter the username and password of an account that has the user rights to access IIS in order for the ping to reach the Spotfire Web Player. It must be a valid Windows account that can access the web application.
  3. Remove the WindowsUserName and WindowsPassword values from the Spotfire.Dxp.Web.KeepAlive.exe.config file. For example:

    From: 
    <setting name="WindowsUserName" serializeAs="String">
    <value>WindowsUserName</value>
</setting>
<setting name="WindowsPassword" serializeAs="String">
    <value>WindowsPassword</value>
</setting>



    To: 
    <setting name="WindowsUserName" serializeAs="String">
    <value/>
</setting>
<setting name="WindowsPassword" serializeAs="String">
    <value/>
</setting>
Powered by Wolken Software