SRM can encrypt the configuration file as a whole or just individual sensitive values.
The encryption of the entire file is possible only if SystemEDGE is in managed mode. If at configuration or reconfiguration time, svcrsp receives the input configuration file encrypted, it also encrypts the modified configuration file. Any subsequent changes maintain the file encrypted.
The partial encryption is always present. The test password parameter is always encrypted when written to the svcrsp.cf file.
The details of the encryption mechanism are handled by SystemEDGE. SRM has no access to encryption or decryption keys. SRM always uses the decrypt function of SystemEDGE to access the configuration file, regardless the file is encrypted or not.
|
Copyright © 2013 CA.
All rights reserved.
|
|