Previous Topic: Changing the Policy Server Super User PasswordNext Topic: Key Management Overview


Configuring and Managing Encryption Keys

This section contains the following topics:

Policy Server Encryption Keys Overview

Key Management Overview

FIPS 140-2

Agent Keys

Dynamic Agent Key Rollover

Static Keys

Session Ticket Keys

Key Management Scenarios

Reset the r6.x Policy Store Encryption Key

Reset the r12.x Policy Store Encryption Key

Configure Agent Key Generation

Manage Agent Keys

Manage the Session Ticket Key

Shared Secret for a Trusted Host

Policy Server Encryption Keys Overview

The Policy Server and Agents use encryption keys to encrypt and decrypt sensitive data passed between Policy Servers and Agents in a SiteMinder environment.

Both types of keys are kept in the Policy Server's key store and distributed to Agents at runtime. By default, the key store is part of the Policy Store, but a separate key store database can be created if desired.

Other, special keys are: