Secret Server generates a unique encryption key during installation. This key is encrypted and kept in the encryption.config file or managed by an HSM. The combination of this file and your Secret Server database allows you to reconstitute your system at any point.
Backup your encryption.config file, database and your Secret Server application folder to ensure smoothly moving and/or restoring of the application,
Secret Server hashes and salts local user passwords using a randomly generated salt and the PBKDF2-HMAC-SHA256 hashing algorithm. Active Directory logins authenticate directly to the domain and their passwords are not stored in the Secret Server database.
Governments, the military and banks use 256 bit encryption to protect highly sensitive information; universities use it to protect privileged student data; the healthcare industry uses it to keep patients’ medical records secure. Today, organizations worldwide look to AES to protect themselves from hackers and cyber crime.
If you’re interested in advanced encryption techniques… check out the range of security and compliance solutions Secret Server provides for organizations that need to meet industry security standards.
Security Solutions as a service.
Maximize your password security,
Minimize your security risks.