Service Account Encryption requirements

Forum: Operations Manager4
Viewing 2 posts - 1 through 2 (of 2 total)
  • #230171

    Hi Paul,

    Please check here for details:

    SCOM – How Data is Encrypted

    “On the agent RunAs accounts are stored in the registry and protected using DPAPI.”
    “DPAPI Security
    DPAPI provides an essential data protection capability that ensures the confidentiality of protected data while allowing recovery of the underlying data in the event of lost or changed passwords. The password-based protection provided by DPAPI is excellent for a number of reasons.
    It uses proven cryptographic routines, such as the strong Triple-DES algorithm in CBC mode, the strong SHA-1 algorithm, and the PBKDF2 password-based key derivation routine.”

    Hope that helps.

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.