I haven't tested it yet, but if you're on a Windows platform you MAY be able to tell Tomcat to use the Windows Certificate Store (an thus NOT have a password in server.xml) by adding something like this to the Java Options: -Djavax.net.ssl.trustStoreProvider=SunMSCAPI -Djavax.net.ssl.trustStoreType=Windows-ROOT -Djavax.net.ssl.trustStore=NONE -Djavax.net.ssl.keyStoreProvider=SunMSCAPI -Djavax.net.ssl.keyStoreType=Windows-MY -Djavax.net.ssl.keyStore=NONE
.. and this may not work at all.. On Thu, May 25, 2017 at 7:46 AM, Vidyadhar <techienote....@gmail.com> wrote: > On Thu, 25 May 2017 at 6:01 PM, Dhaval Jaiswal <dhaval.jais...@via.com> > wrote: > > > How can we avoid defining plain text password in server.xml or is there > a > > way i can encrypt the password in server.xml. > > > There are couple of examples on https://wiki.apache.org/ > tomcat/FAQ/Password > -- > Regards, > Vidyadhar >