Dynamic constants and tokens can sometimes contain sensitive data in their command-line parameters, such as user names and passwords. To prevent clear-text passwords from being stored in the MDB or seen by a passerby, the policy editor provides a way to hide and encrypt passwords. You can add a Credential item containing the user name and password, and then reference it in the command-line arguments of the script, instead of the user name and password.
Note: The password is always stored and displayed in its encrypted form.
The reference to the Credential item has the following format:
&(CREDUSER:CRED1) and &(CREDPASSWORD:CRED1).
You must create a credential before it can be referenced later as a way to hide and encrypt passwords.
|
Copyright © 2010 CA.
All rights reserved.
|
|