How to setup AES encryption for system agent on R11.3 agents?
book
Article ID: 22072
calendar_today
Updated On: 07-19-2022
Products
CA Workload Automation AE - Business Agents (AutoSys)
CA Workload Automation AE - Scheduler (AutoSys)
Workload Automation Agent
DSERIES- SERVER
CA Workload Automation DE - System Agent (dSeries)
Issue/Introduction
Setting up AES encryption for system agent.
Environment
Component: Workload Automation Agent
Resolution
In order to use AES, users will have to create a key and edit the agentparm.txt file.
- Set the encryption on the agent using the keygen utility.
- Enter the following command at the command prompt:
keygen 0xkey cipher destination
Example:
keygen 0x1020304050607080 AES /path/to/cryptkey.txt
- Shutdown the agent and edit agentparm.txt.
- Edit the following parameter to specify the encryption key:
security.cryptkey
Set security.cryptkey=/path/to/cryptkey.txt
- Add/set the following parameter for the agent to use the FIPS-certified library and cipher algorithm in agentparm.txt
security.jce.fips=true
- Save the agentparm.txt and start the agent.
Note: The scheduler must also have the same encryption key setup in the topology or agentdef.
Feedback
Was this article helpful?
thumb_up
Yes
thumb_down
No