UIM - Security.cfg propagation to all hubs? MD5 Weaker Encryption
search cancel

UIM - Security.cfg propagation to all hubs? MD5 Weaker Encryption

book

Article ID: 137134

calendar_today

Updated On:

Products

DX Unified Infrastructure Management (Nimsoft / UIM) CA Unified Infrastructure Management On-Premise (Nimsoft / UIM) CA Unified Infrastructure Management SaaS (Nimsoft / UIM)

Issue/Introduction

security.cfg has access to credential information. 

Environment

  • Component : UIM - SECURITY VULNERABILITIES

Resolution

We use AES-128 encryption method for security.cfg when "encrypt_user_info=yes" is used. 

PBKDF2 hashing is used with "psv2_password=yes".

With psv2_password=yes, the password will have $PSV2$ prefixed. With encrypt_user_info=yes, the user content in security.cfg will be encrypted instead of plain text

Additional Information