Configuring protected secrets

To avoid including confidential data in your application code, you can use secrets to protect sensitive data, such as passwords, tokens, or keys.

About this task

In the app configuration, you can configure a secret to use cipher text and a decryption key. This configuration ensures that the secret value is not displayed as plain text in the shell environment variable.

Protected secrets are supported in IBM Security QRadar Suite V1.10.7 and later versions. If your Edge Gateway is running an earlier version, you cannot use protected secrets. You must upgrade to Edge Gateway version 1.11.1 or later, or re-configure the secret so that it is not encrypted.

Procedure

  1. Go to the Administrator Settings page.
  2. From the Apps tab, select the app that you want to configure, and click the Configuration tab.
  3. From the App Secrets section, you can modify an existing secret or create a new secret.
    To modify an existing secret:
    1. Select the secret.
    2. From the Update Secret dialog, enter a new value for Secret Name and Secret Value.
    To create a new secret:
    1. Click Add Secret.
    2. Enter a secret name and secret value.
  4. Check the Encrypt the secret... box to encrypt the secret.
  5. Click Create or Update, depending on if you are creating a new secret or updating an existing secret.