Thank you for your feedback.
Form temporarily unavailable. Please try again or contact docfeedback@servicenow.com to submit your comments.
Versions
  • Madrid
  • London
  • Kingston
  • Jakarta
  • Istanbul
  • Helsinki
  • Geneva
  • Store
Close

Configure the AES 256-bit encryption key

Log in to subscribe to topics and get notified when content changes.

Configure the AES 256-bit encryption key

After you configure the AES 128-bit key through the Edge Encryption proxy installer, you can optionally configure an AES 256- bit encryption key to encrypt your data.

About this task

The encryption key is either a plain text file inside the /keys directory or a secret key inside a keystore. If you use a keystore for your AES 128-bit and AES 256-bit encryption keys, both keys must use the same keystore. If you do not want to configure an AES 256-bit encryption key, click Skip to continue installing the proxy server.

Procedure

  1. Select the encryption key location.
    OptionDescription
    File Store Use a file to store a single encryption key. Use an existing file in the /keys directory or generate a new file. To generate a new file, enter an alias and click Generate. A file containing an encryption key is created.
    Note: This choice designates both the storage location and the encryption key. If you select File Store, click Next and go to step 5.
    Create New Java KeyStore Create a keystore to store the encryption key.
    Java KeyStore File Store the encryption key in an existing Java KeyStore file.
  2. Click Next.
  3. Select or create the encryption key.
    OptionDescription
    New Key Create an encryption key and alias.
    Note: You must use lowercase letters and numbers for the alias name (key name, key alias), per Java KeyStore requirements. To find out more about the keytool utility, see the Java SE Documentation.
    Use Existing Key Use an existing encryption key in the selected keystore.
    Import Existing Key Import an encryption key from a different keystore.
  4. Click Next.
  5. (Optional) If you want to use AES 256-bit encryption, do the following:
    OptionChoice
    Java 8 update 141 or earlier Install the Java Cryptography Extension (JCE) and overwrite the policy files in the Java home directory. See Enable AES 256-bit encryption for Java 8 update 141 (8u141) or earlier.
    Java 8 update 151 or later Edit the java.security policy file to allow the use of unlimited strength keys. See Enable AES 256-bit encryption for Java 8 update 151 (8u151) or later.
  6. To use AES 256-bit encryption, you must also configure the AES 256-bit default encryption key on the instance by navigating to the instance and defining a default key.

    See Configure encryption keys on the instance. Ensure that the key alias, size, and type match the requirements defined in the installer.

  7. Once the key is configured on the instance, return to the installer and click Next.
Feedback