---
title: PKCS#12 keystore
description: ASE ships with a default PKCS#12 keystore. The default password is "asekeystore". The default password is obfuscated and configured in the ase.conf file. You must update the default PKCS#12 keystore password by using the update_keystore_password command for security reasons. The password is updated and obfuscated at the same time. ASE must be running for updating the keystore password.
component: pingintelligence
version: 5.1
page_id: pingintelligence:api_security_enforcer:pingintelligence_keystore
canonical_url: https://docs.pingidentity.com/pingintelligence/5.1/api_security_enforcer/pingintelligence_keystore.html
revdate: April 3, 2024
---

# PKCS#12 keystore

ASE ships with a default PKCS#12 keystore. The default password is "`asekeystore`". The default password is obfuscated and configured in the `ase.conf` file. You must update the default PKCS#12 keystore password by using the `update_keystore_password` command for security reasons. The password is updated and obfuscated at the same time. ASE must be running for updating the keystore password.

```
/opt/pingidentity/ase/bin/cli.sh update_keystore_password -u admin -p admin
New password >
New password again >
keystore password updated
```