AnsweredAssumed Answered

CA SSO : Key, Encryption and Cache

Question asked by Dhi1ip on Apr 1, 2018
Latest reply on Apr 2, 2018 by Dhi1ip



1) I would like to know which key will be used to encrypt the shared secret before sharing the same with web agent? I hope it is Policy Store key. Please confirm.

Note : I am aware that Policy Store key will be used for encryption (before storing in PStore) as it is sensitive information.


2) If the PS is in FIPS ONLY mode, will AES algorithm be used only for encrypting the session keys or will it be used (instead of RC2) even for encrypting any sensitive information in Policy Store, Encrytionkey.txt file and smregistry?


3) When Policy Store details will be cached in Policy Server? Will policy server caches all the policy store details during startup itself or is it similar to webagent cache (will update when that corresponding resource is accessed)?