IBM Tivoli Monitoring, Version 6.3

Encrypting a password or pass phrase

For increased security, you can encrypt passwords and pass phrases that are transmitted to remote systems when you use Remote log file monitoring.

About this task

The encrypted password and pass phrases are stored in the configuration (.conf) file. For more information about the configuration file, see Configuration file.

Procedure

Run the itmpwdsnmp command and supply the password or pass phrase that is to be encrypted:

On UNIX and Linux systems, the command is run from the IBM® Tivoli® Monitoring installation directory:
Restriction: You must set the CANDLEHOME environment variable to the installation directory path.
On Windows, the command is run from the TMAITM6 directory (C:\IBM\ITM\TMAITM6 by default).

Example of the command when it is run on a Linux system:

$ export CANDLEHOME=/opt/IBM/ITM
$ /opt/IBM/ITM/bin/itmpwdsnmp

Enter string to be encrypted:
mypassword

Confirm string:
mypassword

{AES256:keyfile:a}Z7BS23aupYqwlXb1Gh+weg==
$

The entire output from the command, {AES256:keyfile:a}Z7BS23aupYqwlXb1Gh+weg== in the example, is used to set the SshPassword in the agent configuration file. The prefix {AES256:keyfile:a} denotes to the agent that the password is encrypted.

To encrypt a pass phrase for a private key file, follow the same procedure.

Feedback