12.3 – Protect the Encryption Keys Datasets

Protect transmitted and stored data encryption key data.

Transmitted Data Encryption Keys Dataset

Note
This permission is only required when Transmitted Data Encryption is implemented.

Set RACF to permit only Connector for RACF servers (CTSACS and CTSACD) READ access to the encryption key dataset ENCREXT created in 11.4 – Set Up Secured Communication. No other accounts, other than the installer User ID, must be authorized to access this dataset (not even READ authorization).

Stored Data Encryption Keys Dataset

Set RACF to permit only Connector for RACF servers (CTSACS and CTSACD) and Connector Interceptors (CTSAONI and CTSAOFI) READ access to the encryption key dataset ENCRINT created in Step 8 – Format Connector for RACF Datasets. No other accounts, other than the installer User ID must be authorized to access this dataset (not even READ authorization).

Feedback is provided as an informational resource only and does not form part of SailPoint's official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.


	You are here:

12.3 – Protect the Encryption Keys Datasets

Transmitted Data Encryption Keys Dataset

Stored Data Encryption Keys Dataset

Documentation Feedback