...
| Anchor | ||||
|---|---|---|---|---|
|
The AES Encryption Provider provides strong, FIPS-compliant encryption for passwords stored in the AMS database.
| Anchor | ||||
|---|---|---|---|---|
|
To use the AES Encryption Provider you must create an instance (or import one) and then set it as the default encryption provider.
...
- Open the Configuration tab in the Arellia Security Manager console.
- In the Configuration tree navigate to Settings > Configuration > Service Providers > Encryption Providers.
- Right-click on Encryption Providers and select New > AES Encryption Provider.
- Name your provider and click OK to create it.
| Anchor | ||||
|---|---|---|---|---|
|
| Warning |
|---|
Once your encryption provider has been used to store passwords you should not delete or change the provider. Doing so will prevent AMS from recovering anything encrypted by the provider. Instead of deleting or changing you should create a new provider and configure it as default. |
...
- Open the Configuration tab in the Arellia Security Manager console.
- In the Configuration tree navigate to Settings > Configuration > Infrastructure > Configuration Settings.
- On the right under Product select Arellia Management Server.
- Click Select... next to Encryption Provider and choose your provider.
- Click the Save button to save your settings.
...
| Anchor | ||||
|---|---|---|---|---|
|
You can use a custom password or passphrase to generate a key that your AES encryption provider will use to encrypt stored passwords.
...
| Anchor | ||||
|---|---|---|---|---|
|
Whenever new passwords are stored in the AMS database (LSS User Passwords, configured User Credentials, etc.) they will encrypted using the selected encryption provider.