The Configuration directory (/path/to/openam) contains files created during the install process. Some of these files contain critical information that is required when AM initializes; AM cannot start if these files become corrupt or are missing. In particular, there are two files within AM’s configuration directory that are used to bind to the configuration store when AM starts up:
On startup, AM binds to the configuration store as follows:
- AM reads the boot.json file to get the bind DNs to access the Configuration Store and the location of the JCEKS keystore file.
- AM then uses the .storepass file to access the keystore.jceks file. The .storepass file is created at build time and consists of a random-generated string stored in cleartext.
- AM then uses the .keypass file to access the configstorepwd and dsamesuserpwd password entries in the keystore, which are then used to bind to DS.
See Replacing the Bootstrap File for further information about the individual properties in the boot.json file.
- configstorepwd - maps to the password for the dirManagerDN entry in boot.json.
- dsamesuserpwd - maps to the password for the dsameUser entry in boot.json.
See To Replace the AM Keystore for further information about these aliases.