Disabling Initialization Vectors for URL Integrations - Signature Deficiencies for Epic - Foundation 25.1 - Foundation 25.1 - Ready - OnBase - external - OnBase/Signature-Deficiencies-for-Epic/Foundation-25.1/Signature-Deficiencies-for-Epic/Configuration/Authentication-Configuration/Disabling-Initialization-Vectors-for-URL-Integrations - 2025-03-17 - An initialization vector adds a layer of cryptographic security to encrypted information sent in URL query strings. Possible applications include (but are not limited to) DocPop, the OnBase Patient Window, and the OnBase Web Viewer. An Epic External System Setting is not required to be configured to enable initialization vectors as initialization vectors are enabled by default. However, initialization vectors can be disabled by using the Epic Encryption Initialization Vector Required Epic External System Setting.

Signature Deficiencies for Epic
Platform
OnBase
Product
Signature Deficiencies for Epic
Release
Foundation 25.1
License

An initialization vector adds a layer of cryptographic security to encrypted information sent in URL query strings. Possible applications include (but are not limited to) DocPop, the OnBase Patient Window, and the OnBase Web Viewer. An Epic External System Setting is not required to be configured to enable initialization vectors as initialization vectors are enabled by default. However, initialization vectors can be disabled by using the Epic Encryption Initialization Vector Required Epic External System Setting.

Note: If using Java Web Encryption (including AES 128 JWE and AES 256 JWE), the Epic Encryption Initialization Vector Required setting is always treated as true.
CAUTION: It is highly recommended that initialization vectors remain enabled if you have any OnBase applications that will receive Epic authentication information through a URL query string.

To disable initialization vectors for URL integrations:

  1. In the OnBase Configuration module, select Utils > External Systems.
    The External System Configuration dialog box is displayed.
    External System Configuration dialog box.
  2. From the External System Names list, select Epic
  3. Click Values.
    The External System Parameter Configuration dialog box is displayed.
    External System Parameter Configuration dialog box.
  4. In the Key field, enter the following: Epic Encryption Initialization Vector Required
    Note:

    Key names are case-sensitive. Type the name exactly as displayed.

  5. In the Value field, enter the following: false
    CAUTION: It is highly recommended that initialization vectors remain enabled if you have any OnBase applications that receive Epic authentication information through a URL query string.
  6. Click Add.
  7. Click Save.
    Note:

    If you click Save without first clicking Add, the specified Key and Value are automatically added.

    OnBase applications accept encrypted information with or without an initialization vector.