Question
Sopra Steria Group
IN
Last activity: 13 Mar 2020 9:41 EDT
Password Encryption in context.xml
We are using Pega V7.2.2 , DataBase password are stored as simple text in context.xml and the requirement is to encrypt it as a security measure .
username=" username" password="password"
We went through various articles in pdn :
https://collaborate.pega.com/question/ecrypting-db-connection-password-contextxml-file
https://community.pega.com/knowledgebase/articles/security/encryption-pega-platform
All articles mentioned above .... they have suggested the solution for prconfig.xml . Do you have any additional information or solution to how to encrypt passwords in context.xml ?
Pegasystems Inc.
US
Hi Reevanshi
There are various places where DB username/password is specified in plaintext like prbooststrap & prconfig file to run certain CLI utilities. Please note keyring implementation is to encrypt the password for prconfig.xml, passgen is for prbootstrap.properties.
Refer to the Password Encryption section here:- https://community.pega.com/knowledgebase/articles/security/encryption-pega-platform
Please note custom cipher implementation encrypts application-level data but not the database connection details in context.xml. If you want to encrypt the password in context.xml then that is a question for the application server. Pega doesn't have any recommendations to achieve this.
Let me know if that clarifies.