Question
Authentication Profile Encryption
In our project, we have a Case Management Service in Pega Cloud ( SOAP Service : version 7.2.2 ). The service is consumed by a in-house instance of Pega in 6.2 ( SOAP Connector ). The Service in Pega cloud expects the consumer in Pega 6 to send the HTTP Authorisation header ( as Authentication profile ). So, we need to send the Pega cloud Operator ID & password thru Authentication profile from in-house Pega 6 application ( thru SOAP connector ). Here are my questions.
1. When I key in the User Name & password in the Authentication profile in Pega 6.2SP1, will it encode or encrypt or hash it by default while storing ?
2. When the connect SOAP in Pega 6 picks up the Authentication profile to inject into SOAP request as HTTP Auth Header, will it still be encoded / encrypted / hashed ?
If so, what is the OOTB default mechanism for encode/encrypt/hashing ?
***Edited by Moderator Marissa to add SR Details***
Hi,
When you save the auth profile, the password will be stored in the encrypted format using platform default cipher.
While connecting to the target service, this password will be decrypted and then will be encoded to generate the authorization header.
Thanks,
Santhosh