Need steps to encrypt LDAP password deployed on Openshift

Must-share information (formatted with Markdown):

  • which versions are you using (SonarQube, Scanner, Plugin, and any relevant extension): SonarQube
  • how is SonarQube deployed: zip, Docker, Helm: Helm
  • what are you trying to achieve: LDAPS
  • what have you tried so far to achieve this: LDAPS is working as expected when I provide the password in clear text. I wanted to encrypt this, I followed few suggestions like putting the encryption key in sonar-text and giving the path in After these changes they requested to restart the sonarqube, so I am deleting the pod. In this process I am losing the encryption key. I am sure I am missing something, but can someone advise how to achieve this?

Do not share screenshots of logs – share the text itself (bonus points for being well-formatted)!

Hey there.

You can handle this directly through the Helm Chart, by loading a secret into sonarSecretKey that is used for settings e encryption.

1 Like

Hello Colin,
Do I need to build the SonarQube UI first, generate encryption and put the key into sonar secret?
My understanding is correct?

That is the easiest way to get one, but it exists independently of SonarQube (if you started up a a local instance and decided to use that one, you can use that one on any future instance).

It’s just a base64 encoded AES 256 key.