Encryption of Secrets

Introduction

Secrets are encrypted so that passwords are not stored in plaintext in either the database or regular configuration files. A master password, is stored in a special configuration file called master.key

Prerequisites

What versions of products

Enabling

How to enable encryption of secrets

Encryption of Secrets is enabled automatically for a fresh install of FirstWave products.

If you want to upgrade an existing deployment to use Encryption of Secrets, the steps are:

1.

2.

3.


Your secrets are encrypted using a master key. This master key is a file stored on your server that contains a 256 alpha-numeric characters. This file must be secured on your server so that only the FirstWave system services have access to the master key.

The master key is generated automatically when you install your first FirstWave product, or when you enable Encryption of Secrets.