Username and Configuration Setting Encryption
uberAgent optionally encrypts user and domain names in the agent and has support to encrypt sensitive settings in its configuration.
User and Domain Names
User and domain names can be encrypted in the agent before being sent off to Splunk. This can be useful for compliance with privacy regulations. It is disabled by default. Enable user and domain name encryption via the configuration setting EncryptUserNames.
If you want to decrypt user and domain names for e.g. troubleshooting purposes, use the command line tool uAEncrypt.exe, which is available in the uberAgent download package. The syntax is viewable by running uAEncrypt.exe -h.
uAEncrypt.exe -decrypt -keyId 101 -data EncryptedDataHere
Sensitive settings like passwords can be encrypted with the command line tool uAEncrypt.exe, which is available in the uberAgent download package. The syntax is viewable by running uAEncrypt.exe -h.
Some settings to consider for encryption are
- RESTToken in the stanza [Receiver]
- Password in the stanza [CitrixADC_Config]
uAEncrypt.exe -encrypt -keyId 1 -data Password
Decryption is possible with:
uAEncrypt.exe -decrypt -keyId 1 -data EncryptedDataHere