As you may know the GlideEncrypter API is deprecated with Xanadu and will be removed with Zurich from the platform: GlideEncrypter - Global (deprecated)
I think for the sake of platform security, this is a step in the right direction, but it might give you a headache if you wanna troubleshoot something quickly…
So, what can you do if you want to validate you are using the correct password, which is stored in a password2 field, for example in a basic authentication profile.
You can still do that with the KMF (Key Management Framework) application. You might need to talk to your platform team to get authorized to use it. On my PDI I just added my admin account to the list of selected users, as seen in below screenshot:
After clicking “Save”, you need to logoff and logon again. Then you will be able to see the Key Management application and use it.
Next step is to add a Cryptographic module as below:
Then, we create a script include, like this:
Now, our Cryptographic module still requires a specification, you need to create it including some key alias:
In my case, the platform then created a Module Access Policy automatically for the script include, but this could be done manually as well.
Once this is complete, you can decrypt your password – I did in a background script:
And I got my result:
There are probably better use cases for the KMF, but this little intro can give you an idea how to get started.
Please indicate below if this article was useful for you.
1 Comment
