Password encryption for agents is enabled in their configuration
files.
To enable password encryption for an agent, do the following:
- Stop the agent if it is running.
- Go to the directory where the agent is installed.
- Edit bfagent.conf and turn on the encryption
setting:
password_encrypt_module ./bfcrypt.dll;./bfpwcrypt.conf
If
the agent is launched from a directory other than where it is installed,
change this path to refer to the files directly.
- Get the Management Console encryption key. Export the key to a
file. This key is required for the agent to decrypt an encrypted Server
Auth password. It will also be used to encrypt local keystore passwords.
- Place the key in the agent's bfpwcrypt.conf file.
Put the generated key for the agent last in the file. The last entry
in the file is used when you encrypt passwords manually.
- Start the agent.
- In the Management Console, go to Servers.
For every server definition that uses this agent, set the Password
Encryption Configuration property to Enabled.
- Click Test Connection to make sure that
the connection works with the encrypted password.