search cancel

Gen aeenv file ID and Password Security options

book

Article ID: 20357

calendar_today

Updated On:

Products

Gen Gen - Workstation Toolset Gen - Host Encyclopedia Gen - Run Time Distributed

Issue/Introduction

Within the Gen aeenv file, the database information including the userid, password and database name, is ascii. Can this information be accessed elsewhere or encrypted by using a Gen user exit?

Environment

Release: 8.6
Component: Gen Runtime Distribute (Windows, Unix, and Linux)

Resolution

The aeenv file is read by the database connection exit, dbconnct(), which for Oracle, is located within the file $IEFH/src/tiroconn.pc on the Unix/Linux platforms and C:\Program Files (x86)\CA\Gen86\Gen\tiroconn.pc on the Windows Platforms.

In that exit, the code can be modified so that, instead of simply reading the aeenv file ascii ids and passwords, the option exists to:
Retrieve the credentials from another location from this dbconnct() file. The credentials could be an encrypted version from this dbconnct() file. The id, password and/or database name, would need to be encrypted externally for this to work.

As tiroconn.pc is a user exit, once a modification is made, you would need to "make" the exit after modification using mkdbs, which is located within the $IEFH/make directory on the Unix/Linux platforms or mkdbs.bat within C:\Program Files (x86)\CA\Gen86\Gen\ on the Windows platform.

Additional Information

Gen 8.6 documentation references for the user exit dbconnct:
Gen™ 8.6 > Implementation Toolset > UNIX and Linux Implementation Toolset > Application Security
Gen™ 8.6 > Implementation Toolset > Windows Implementation Toolset > User Exits for Windows IT > Block Mode Runtime User Exits
NOTE: For Windows, 3 user exit files contain dbconnct to cover the supported databases on that platform i.e.
TIRCODBC.C - ODBC 
TIRDCONN.SQC - DB2
TIROCONN.PC - Oracle