Versions Compared

Old Version 16

changes.mady.by.user Saurabh Gupta

Saved on

compared with

New Version 17

changes.mady.by.user Saurabh Gupta

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Process Flow logs are stored in the repository folder. For security reasons, you may want to secure your logs from an unauthorized access. Adeptia facilitates you to secure your logs by encrypting the data at rest. With this feature, your logs get stored in an encrypted form.

...

  1. Open Command Prompt (press Win + R and type cmd).
  2. Go to the directory where JRE is installed (for example, C:/Program Files/Java/jre8/bin).

  3. Run the following Keytool command to create a Keystore.

    keytool -genseckey -keystore <Keystore_path> -storetype jceks -storepass <Keystore_password> -keyalg AES -keysize 256 -alias <alias_name> -keypass <Key_password>

    where,
              genseckey is the Generate SecretKey. This is the flag indicating the creation of a synchronous key which will become AES key.

              keystore is the location of the Keystore. If the Keystore does not exist, the tool will create a new store. 

              storetype is the type of store (JCE, PK12, JCEKS, etc). JCEKS is used to store symmetric keys (AES) not contained within a certificate.

              storepass is the password related to the Keystore. 

              keyalg is the algorithm used to create the key (AES/DES/etc).

              keysize is the size of the key.

              alias is the name given to the newly created key in which to reference when using the key.

              keypass is the password protecting the use of the key.  

      

  4. Exit from the Command Prompt.

    The Keystore is generated at the specified location.

Configuring Keystore in Adeptia Suite

  1. Login to Adeptia Suite as an administrator.
  2. Go to Administer > Setup > Application Settings > Update System Properties.
  3. Expand Systems > Data Encryption at REST.

  4. Set the value in the below parameters:

    Property NameDescription
    abpm.security.data.encryption.rest.enableTo enable or disable RESTdata encryption at rest.
    abpm.security.data.encryption.rest.keystoreLocationLocation of the Keystore that will be used for data encryption.
    abpm.security.data.encryption.rest.aliasAlias name for the key.
    abpm.security.data.encryption.rest.keystorePaswordKeystore password
    abpm.security.data.encryption.rest.keyPasswordKey password
  5. Click Save to save the changes.
  6. Click Reload Configuration to reflect the changes.
  7. Restart Kernel and WebRunner.

If you want to encrypt the existing records present in the Process Flow repository (in plain text) then do the following:

  1. Copy all the records in a separate folder. 
  2. Encrypt the folder using the Encryption Utility. 
  3. After the records are encrypted successfully, copy the records of the encrypted folder in the Process Flow repository folder.

 

Using Encryption Utility

You can encrypt or decrypt the files of a folder using Encryption Utility. To encrypt or decrypt, you need to configure the encryption properties in the encryption-info.properties file.

...