How to setup AES encryption for system agent on R11.3 agents?
search cancel

How to setup AES encryption for system agent on R11.3 agents?

book

Article ID: 22072

calendar_today

Updated On:

Products

CA Workload Automation AE - Business Agents (AutoSys) CA Workload Automation AE - Scheduler (AutoSys) Workload Automation Agent DSERIES- SERVER CA Workload Automation DE - System Agent (dSeries)

Issue/Introduction

Setting up AES encryption for system agent.

Environment

Component: Workload Automation Agent

Resolution

In order to use AES, users will have to create a key and edit the agentparm.txt file.

  1. Set the encryption on the agent using the keygen utility.

  2. Enter the following command at the command prompt:

    keygen 0xkey cipher destination

    Example:

    keygen 0x1020304050607080 AES /path/to/cryptkey.txt

  3. Shutdown the agent and edit agentparm.txt.

    1. Edit the following parameter to specify the encryption key:

      security.cryptkey
      Set security.cryptkey=/path/to/cryptkey.txt

    2. Add/set the following parameter for the agent to use the FIPS-certified library and cipher algorithm in agentparm.txt

      security.jce.fips=true

  4. Save the agentparm.txt and start the agent.

Note: The scheduler must also have the same encryption key setup in the topology or agentdef.

Powered by Wolken Software