Agentless windows uses 56-bit DES to encrypt/decrypt service domain passwords. When the user enters a domain password in the Windows Domain Configuration screen, the password is encrypted using 56-bit DES. The encrypted password is stored locally in enVision's back-end (Sybase) configuration database. The NIC Windows service reads the password from the database and decrypts it to use when authenticating the winprocess executable for the domain.
The windows service is the only place where the password is used in its decrypted form--the GUI never decrypts the password.
|Issue||How enVision encrypts Windows login credentials|
|Legacy Article ID||a43056|