How to prevent password expiration in apache Archiva

I am running a standalone Archiva 2.2.0 installation. I added security.properties file to ~\conf directory. In security.properties I defined:

security.policy.password.expiration.days=999999
security.policy.password.expiration.enabled=false

However, Archiva keeps complaining that the admin password has expired.

Thank you!

Solution

It is possible. In my case I stopped the admin password from expiring regularly by noticing that the properties had been copied into the main archiva.xml file.

Specifically, you need to change the expiration settings within the configurationProperties block.

<expiration>
    <enabled>false</enabled>
    <days>999999</days>
</expiration>

Please refer to my answer here for how to go about it.

Restricting access to static files in Django/Nginx
Does RabbitMQ allow Audit Logging
Powershell Set-MpPreference -DisableRealtimeMonitoring $true not working correctly
Why are iframes considered dangerous and a security risk?
Secure Google Cloud Functions http trigger with auth
How do I get the currently loggedin Windows account from an ASP.NET page?
Error Importing SSL certificate : Not an X.509 Certificate
Full text search on encrypted data
It is necessary to send the JWT token from the browser page to the server
Is it possible to use double @ in an email address?
How to replicate the RuntimeDefault seccompProfile in Kubernetes to run in Docker?
Difference between processes running in kernel mode and running as root?
Why is it okay to transmit authentication/session cookies over plaintext?
How to handle .env.local in a next js typescript file?
How does Maven 3 password encryption work?
Do we need encrypt session id before saving it into database
Any point in using a paid threat intelligence service over Google's Lookup API for detecting malicious URLs?
How to securely update configuration for root password in yocto?
how to secure and encrypt setting.xml paswords file in maven?
How to convert a PKCS#8 encoded RSA key into PKCS#1 in Java?
Vector securely erasing its memory
How to safely run user-supplied Javascript code inside the browser?
curl - Is data encrypted when using the --insecure option?
ZAP Dynamic SSL certificate option is not available
how to implement the Eurion constellation security measure
How can I sanitize user input with PHP?
Security threats when using bar() vs bar(void)
Is exposing a session's CSRF-protection token safe?
is electron's `safeStorage` for passwords and login credentials?
Encrypting/decrypting some file types with Rijndael 256 (CakePHP Security library) garbles contents