Adhere to the following scoped application requirements to implement secure (password2) inputs in your Virtual Agent topics.

You can add secure inputs to Virtual Agent topics in two ways:
The Key Management Framework (KMF) must be installed and configured for your instance. The scoped application that uses the secure fields must also have the following:
  • A sys_kmf_crypto_module record, with a related Symmetric Key Wrapping/Unwrapping sys_kmf_module_crypto_spec record
  • A sys_kmf_crypto_caller_policy record with the following properties:
    • Policy name: <modify the auto-generated name>
    • Crypto module: com_glide_cs_glideencrypter
    • Type: Scope
    • Target Scope: <your application's scope>
    • Application: <the name of your scoped application>
    • Active: true
    • Result: Track
  • A Flow Designer action or subflow that accepts one or more password2 input fields
  • A Script step in the Flow Designer action that unwraps the password2/KMF passwords as follows: 
    var op = new 
sn_kmf_ns.KMFCryptoOperation("global.com_glide_cs_glideencrypter","SYMMETRIC_UNWRAPPING").withAlgorithm("AES").withOutputFormat("KMFNONE");
var old_pw_clear_data = op.doOperation(inputs.old_pw);
var new_pw_clear_data = op.doOperation(inputs.new_pw);
var new_pw_confirmed_clear_data = op.doOperation(inputs.new_pw_confirmed);

For more information about password2 encryption with KMF, see Password2 encryption with KMF.