Versions Compared

Old Version 8

changes.mady.by.user Morgan Mackeson-Ellis

Saved on

compared with

New Version Current

changes.mady.by.user eric revollo

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

FieldDescriptionExample
sp_con_nameLowercased connection name, used as saltrepository
sp_con_stringODBC Connection Stringdsn=$DSN$;uid=$USER$;pwd=$PASSWORD$;
sp_user_nameUser Nameredscheduler_user
sp_encrypted_pwdEncrypted PasswordVTj0Q2xapJEWpQed8DJYvBEEnRedR94NstiHJUlLt0gC

authConfig

Auth Configuration JSON{"authExpiresAfterMins":0,"authScriptCommand":""}
token_1Encrypted TokenVTj0Q2xapJEWpQed8DJYvBEEnRedR94NstiHJUlLt0gCSAEfvc2xapJEWpQed8DJYvBEEnRedR94NstiHJUlLt0gC
token_2Encrypted TokenVTj0Q2xapJEWpQed8DJYvBEEnRedR94NstiHJUlLt0gCVKSJDH2xapJEWpQed8DJYvBEEnRedsdflLt0gC
token_3Encrypted TokenVTj0Q2xapJEWpQed8DJYvBEEnRedR94NstiHJUlLt0gCvTj0Q2xasdASfdnihvde98EnRedR94NstiHJUlLt0gC

Encryption

WhereScape provides an encryption utility as a stand-alone tool as well as being imbedded in the applicable Azkaban components. Azkaban decryption of WhereScape encrypted passwords expects the salt used for encryption to be the lowercased connection name. Azkaban has access to the Profile Password, required for decryption, via a new property (com.wherescape.red.profilePassword) in the azkaban.local.properties file of each Azkaban server instance. The password values in both the Azkaban properties files and the Azkaban Users.xml file can also be stored using encryption so that they do not appear in plain text in those files. See Azkaban properties for more details.

...

Note

The Extensible Authentication fields added in in 10.6.0.0 can only be updated via the scripted approach maintenance script, described in the next section, these fields will be added to this wizard in the next minor version of RED. 

...

Connect to another: Use a different metadata repository and authentication profile.  

Image Modified

UI Expand
titleUsing current metadata

Click on Current metadata to use the current connection settings.

You will be presented with the ‘authentication profile’ screen. On the Encryption field, enter the Profile Encryption Secret (used to encrypt any passwords entered) and each connection's credentials as well as an appropriate connection string for use by your scheduler service.

Tip
titleProfile Encryption Secret

It is important that you enter and use the same Profile Encryption Secret as you provided in your Azkaban installations otherwise Azkaban will not be able to decrypt these profile records.

Image RemovedImage Added

Once you entered the credentials for each connection, click Apply.

The wizard will then take the passwords you have entered and encrypt them using the encryption-util.jar, with lowercased connection names as the encryption salt and the Profile Password as the encryption secret.

UI Expand
titleConnecting to another repository

When you choose Connect to another, the Connect to repository screen will open. Provide the required details for connecting to another repository.

Image RemovedImage Added

Once you connect to a repository you will be presented with the ‘authentication profile’ screen. On the Encryption field, enter the Profile Encryption Secret (used to encrypt any passwords entered) and each connection's credentials as well as an appropriate connection string for use by your scheduler service.

Tip
titleProfile Encryption Secret

It is important that you enter and use the same Profile Encryption Secret as you provided in your Azkaban installations otherwise Azkaban will not be able to decrypt these profile records.

Image RemovedImage Added

Once you entered the credentials for each connection, click Apply.

The wizard will then take the passwords you have entered and encrypt them using the encryption-util.jar, with lowercased connection names as the encryption salt and the Profile Password as the encryption secret.

...