USER_FILE_ENCRYPTED - UEMLoad configuration option

Owned by
Former user (Deleted)
Apr 10, 2013
2 min read

Description

The USER_FILE_ENCRYPTED option specifies a file that contains the parameters and encrypted values for the USER_ID and/or USER_PASSWORD options.

Storing these parameters and values in a file can be used in situations where it is not desirable to specify them explicitly on the command line. These parameters must be specified in their respective command line formats.

Any file specified by this USER_FILE_ENCRYPTED option must be encrypted with the Universal Encrypt utility.

Note

This file should not be specified additionally with the USER_FILE_PLAIN option. If both USER_FILE_ENCRYPTED and USER_FILE_PLAIN specify this file, the file specified by USER_FILE_PLAIN will be used.

It is strongly recommended that any user file (including those that are encrypted) which contains sensitive data should be further protected from unauthorized access using file level security.

UEM Server uses this information to execute an event handler process in the security context of the specified user account. An event-driven UEM Server requires this information to be stored in an event handler record if the USER_SECURITY option is enabled in the UEM Server configuration. This is the only means by which an event-driven UEM Server can access this information. Because an event-driven UEM Server is started without user interaction, it cannot prompt for user account information if it is required but not provided.

To simplify database administration, the file specified in USER_FILE_ENCRYPTED is stored in the event handler record. If this file contains a user ID and password, the UEMLoad utility saves those values in the event handler's USER_ID and USER_PASSWORD fields, respectively.

However, UEM does not rely strictly on the values stored in those fields. UEM re-reads the encrypted file stored in USER_FILE_ENCRYPTED, just before executing the event handler process, in order to obtain any changes made to the account information stored in the file. This makes it possible to update account information for several event handler processes without having to change the event handler records themselves.

Usage

Specification Method

Parameter / Value

IBM i

HP NonStop

UNIX

Windows

z/OS

Command Line, Short Form

-x filename

Command Line, Long Form

-encryptedfile filename

(tick)

(tick)

Definition File Keyword

encryptedfile filename

(tick)

(tick)

Value

filename is file containing the encrypted values.

filename can contain either:

  • Complete path
  • Path that is relative to the directory from which the UEMLoad utility is invoked

If filename contains spaces, it must be enclosed in double ( " ) quotation marks.


UNIX

If filename contains spaces, it must be enclosed in either single ( ' ) or double ( " ) quotation marks.