Resource Registry master key file and encrypted value display
The presence of the master key file for an encrypted resource determines whether the resource value displays as plain text or as an encrypted string.
in the clear). To allow access to encrypted values in an .mrn file, you can either:
- Provide the master key (.mkf) file that decrypts the resource values.
- Provide the passphrase that regenerates the .mkf file.
Alternatively, you can withhold the .mkf file and passphrase to protect sensitive resource values. When the .mkf is not present or does not contain the correct master encryption key, the Resource Registry displays encrypted values as encrypted strings. Without the .mkf file, you can use the Resource Registry to view the read-only encrypted values or to clear the values and enter new ones. Optionally, you can encrypt the new values with a new key in a new .mkf file.
Encrypted resource values always display as encrypted strings when you open the .mrn file in a text editor.
On UNIX® systems, only the user who generates the .mkf file has permission to read and write to it. Other users cannot read or write to the .mkf file.