Password encryption

When a client application sends a password to the database server for authentication, the password is not encrypted unless you request password encryption through the simple password communications support module (SPWDCSM). You activate password encryption by specifying it on the configuration for the database server name, or an alias, in the sqlhosts information.

To activate password encryption, specify the following value in the Options field of the sqlhosts entry:

csm=(SPWDCSM)

The client or the database server uses the string "SPWDCSM" as a key to look up the entry that describes the CSM in the CSS/CSM configuration file.

When activated, the SPWDCSM requires a password, effectively overriding any trusted host mechanisms. It is contradictory to specify a password encryption mechanism if a trusted host policy is in place.

For more information about implementing password encryption and for information about communication support services (CSS), see your HCL® OneDB® Administrator's Guide.