This documentation supports the 9.0 version of Remedy Action Request System.

To view the latest version, select the version from the Product version menu.

Activating encryption

The Security Policy value in the Encryption tab (see Encryption tab) determines whether encryption is required to communicate with the server.

To activate or deactivate encryption

  1. Log on to the appropriate BMC Remedy AR System server.
  2. Open the AR System Administration Console.
  3. Click System > General > Server Information.
  4. In the AR System Administration: Server Information form, click the Encryption tab.
  5. In the New Encryption Settings area, select one of these options in the Security Policy list:

    Encryption state

    Value

    Description

    Centralized configuration setting

    Activated

    Optional

    This is the default for BMC Remedy Encryption Performance Security and BMC Remedy Encryption Premium Security FIPS noncompliance.
    Clients with and without encryption installed can communicate with the server.
    Network traffic is encrypted only if the client supports the server encryption configuration.
    Otherwise, network traffic is exchanged in plain text.

    Encrypt-Security-Policy: 0

    Activated

    Required

    This is the default for BMC Remedy Encryption Performance Security and BMC Remedy Encryption Premium Security FIPS compliance.
    Only clients with encryption installed can communicate with the server.

    Note

    The encryption level installed on the client (standard, BMC Remedy Encryption Performance Encryption, or BMC Remedy Encryption Premium Encryption) must be compatible with the encryption algorithms used by the server.

    Encrypt-Security-Policy: 1

    Deactivated

    Disabled

    This is the default for standard encryption.
    Whether encryption is installed on a client or not, communication with the server is not encrypted. Network traffic is exchanged in plain text.

    Encrypt-Security-Policy: 2

    Note

    If the Encrypt-Security-Policy entry is missing from the configuration file, encryption is also deactivated.


    See Security policy impact on client-server communication for Security policy planning information.

  6. (Optional) In the Data Key Details area, change the defaults. See Configuring the data key.
  7. (Optional) In the Public Key Details area, change the defaults. See Configuring the public key.
  8. (Optional) Activate FIPS compliance. See Configuring the data key.
  9. Click Apply.
  10. Restart the server.
  11. Relog on to any clients that are connected to the server.
Was this page helpful? Yes No Submitting... Thank you

Comments