We're aware of an issue causing "Access Denied" errors when using this site. This may occur because multiple tabs are in use. As a potential workaround, try using one single tab and refreshing the page. Thank you for your patience as we work to resolve the issue.

Configure the AES 128-bit encryption key

Watch

Save as PDF

Share this page

Feedback

HomeXanadu Platform securityEncryptionEdge EncryptionInstalling Edge EncryptionInstall the Edge Encryption proxy server using the interactive installerConfigure the AES 128-bit encryption key

Table of Contents

Configure the AES 128-bit encryption key

Release version:
Xanadu
Yokohama
Washington DC
Vancouver
UpdatedAug 1, 2024
2 minutes to read

Xanadu
Edge Encryption

After you configure the HTTPS certificate through the Edge Encryption proxy installer, configure the AES 128-bit encryption key to encrypt your data.

Before you begin

Role required: admin

About this task

The encryption key is either a plain text file inside the /keys directory or a secret key inside a keystore. If you use a keystore for your AES 128-bit and AES 256-bit encryption keys, they must both use the same keystore.

If you are updating an SSL certificate on an Edge proxy server, see Update SSL certificate.

Procedure

Select the encryption key location.

Option	Description
File Store	Use a file to store a single encryption key. You can use an existing file in the /keys directory, or you can generate a new file. To generate a new file, enter an alias and click Generate. A file containing an encryption key is created. Note: This choice designates both the storage location and the encryption key. If you select File Store, click Next and go to step 5.
Create New Java KeyStore	Create a keystore to store the encryption key.
Java KeyStore File	Store the encryption key in an existing Java KeyStore file.

Click Next.

Select or create the encryption key.

Option	Description
New Key	Create an encryption key and alias. Note: You must use lowercase letters and numbers for the alias name (key name, key alias), per Java KeyStore requirements. To find out more about the keytool utility, see the Java SE Documentation.
Use Existing Key	Use an existing encryption key in the selected keystore.
Import Existing Key	Import an encryption key from a different keystore.

Click Next.
Configure the key on the instance according to the requirements defined in your installer.
To configure the key on the instance, navigate to the instance and define a default key. See Configure encryption keys on the instance. Ensure that the key alias, size, and type match the requirements defined in the installer.
Figure 1. Default key requirements
Once the key is configured on the instance, return to the installer and click Next.

Was this topic helpful?

Yes No

Configure the HTTPS certificate

Configure the AES 256-bit encryption key

Configure the HTTPS certificate

Configure the AES 256-bit encryption key

Xanadu Platform security

Filters

Versions

Products