I need to understand what encryption is required for Ops Manager service accounts.
During the installation phase when the service accounts are validated if DES encryption is not enabled the validation fails. So my question is does Operations Manager require the service accounts use DES encryption to function or can AES or HC4 be used.
“On the agent RunAs accounts are stored in the registry and protected using DPAPI.”
DPAPI provides an essential data protection capability that ensures the confidentiality of protected data while allowing recovery of the underlying data in the event of lost or changed passwords. The password-based protection provided by DPAPI is excellent for a number of reasons.
It uses proven cryptographic routines, such as the strong Triple-DES algorithm in CBC mode, the strong SHA-1 algorithm, and the PBKDF2 password-based key derivation routine.”