Digipass Plug-In for SBR Administrator Reference - Vasco

More documents

Recommendations

Info

Digipass Plug-In for SBR Administrator Reference Sensitive Data Encryption 4 Sensitive Data Encryption Sensitive data is encrypted by Digipass Plug-In for SBR using an embedded key. If needed, this encryption may be strengthened by adding a custom key in the Configuration GUI. The embedded and custom keys are subjected to a logical XOR process to produce a new key derived from both. Note Encryption settings must be set before importing Digipass. 4.1.1 Encrypted Data – Active Directory Table 28: Encrypted Data Attributes – Active Directory Attribute Class vasco-StaticPassword vasco-UserExt vasco-SharedSecret vasco-Component vasco-SharedSecret vasco-BackEndServer 4.1.2 Encrypted Data – ODBC and Embedded Database Table 29: Encrypted Data Attributes – ODBC and Embedded Database Column Table vdsStaticPwd vdsUser vdsAdminPrivileges vdsUser vdsSharedSecret vdsComponent vdsSharedSecret vdsBackEnd 4.1.3 Which Encryption Algorithms can be used? AES blowfish cast5 3DES 3DES with 3 keys 4.1.4 Exporting Encryption Settings Encryption settings may be exported to a password-protected text file from the SBR Plug-In Configuration GUI. This file must then be loaded to other SBR Plug-Ins – see 11.1.9 Data Encryption for instructions. The same file must be loaded into the administration interfaces wherever they are installed: Administration MMC Interface 1. Open the Administration MMC Interface. 2. Right-click on the Digipass Administration node and select the Encryption Settings option. © 2006 VASCO Data Security Inc. 60
Digipass Plug-In for SBR Administrator Reference Sensitive Data Encryption 3. In the Configure Encryption Settings dialog, click the Import... button. 4. Browse to the encryption settings file. 5. Click on OK. 6. Enter the required password. 7. Click on OK. Active Directory Users and Computers The following only applies if you are using Active Directory. In addition, if Active Directory Users and Computers is on the same machine as the Administration MMC Interface, the following steps will not be necessary, as the two programs share the same encryption configuration settings. 1. Open Active Directory Users and Computers. 2. Right-click on the Users container and select the Digipass Extension Encryption Settings option. 3. In the Configure Encryption Settings dialog, click the Import... button. 4. Browse to the encryption settings file. 5. Click on OK. 6. Enter the required password. 7. Click on OK. Digipass TCL Command-Line Administration 1. Open the file \Bin\dpadmincmd.xml in a text editor (or XML editing tool). 2. Open the file \Bin\dpsbrauth.xml in a text editor (or XML editing tool). 3. Copy and paste the whole VASCO -> AAL3 -> Encryption section from dpsbrauth.xml, overwriting the same section in dpadmincmd.xml. 4. Save dpadmincmd.xml and exit the editors. © 2006 VASCO Data Security Inc. 61
Page 1 and 2:
Modify these field values (right-cl
Page 3 and 4:
Digipass Plug-In for SBR Administra
Page 5 and 6:
Page 7 and 8:
Page 9 and 10: Digipass Plug-In for SBR Administra
Page 59: Digipass Plug-In for SBR Administra
Page 111 and 112:
Page 113 and 114:
Page 115 and 116:
Page 117 and 118:
Page 119 and 120:
Page 121 and 122:
Page 123 and 124:
Page 125 and 126:
Page 127 and 128:
Page 129 and 130:
Page 131 and 132:
Page 133 and 134:
Page 135 and 136:
Page 137 and 138:
Page 139 and 140:
Page 141 and 142:
Page 143 and 144:
Page 145 and 146:
Page 147 and 148:
Page 149 and 150:
Page 151 and 152:
Page 153 and 154:
Page 155 and 156:
Page 157 and 158:
Page 159 and 160:
Page 161 and 162:
Page 163 and 164:
Page 165 and 166:
Page 167 and 168:
Page 169 and 170:
Page 171 and 172:
Page 173 and 174:
Page 175 and 176:
Page 177 and 178:
Page 179 and 180:
Page 181 and 182:
Page 183 and 184:
Page 185:
show all

Digipass Plug-In for SBR Administrator Reference - Vasco

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?